Subject: CVS commit: pkgsrc/security/mit-krb5
From: Jonathan Perkin
Date: 2021-01-16 10:00:23
Message id: 20210116090023.CA961FA9E@cvs.NetBSD.org
Log Message:
mit-krb5: Update to 1.18.3.

Fixes issues the with autoconf 2.70 update and bison POSIX yacc errors.

Major changes in 1.18.3 (2020-11-17)
------------------------------------

This is a bug fix release.

* Fix a denial of service vulnerability when decoding Kerberos
  protocol messages.

* Fix a locking issue with the LMDB KDB module which could cause KDC
  and kadmind processes to lose access to the database.

* Fix an assertion failure when libgssapi_krb5 is repeatedly loaded
  and unloaded while libkrb5support remains loaded.

krb5-1.18.3 changes by ticket ID
--------------------------------

7476    updated manual page for kvno
8614    Assertion failure when repeatedly loading libgssapi_krb5
8882    kdb5_util load ignores password expiration with LDAP KDB module
8918    KDC and kadmind fork with DB open, breaking LMDB KDB module
8926    Allow gss_unwrap_iov() of unpadded RC4 tokens
8933    Fix input length checking in SPNEGO DER decoding
8936    Set lockdown attribute when creating LDAP KDB
8938    Leash crashes on failure to auto-renew tickets
8939    Suppress Leash error popup on MSLSA renew failure
8959    Add recursion limit for ASN.1 indefinite lengths
8960    Fix compatibility with upcoming autoconf 2.70
Files:
RevisionActionfile
1.111modifypkgsrc/security/mit-krb5/Makefile
1.74modifypkgsrc/security/mit-krb5/distinfo
1.1addpkgsrc/security/mit-krb5/patches/patch-kadmin_cli_getdate.y
1.1addpkgsrc/security/mit-krb5/patches/patch-plugins_kdb_ldap_ldap__util_Makefile.in