apticron report [Fri, 06 Nov 2015 23:38:10 +0100] ======================================================================== apticron has detected that some packages need upgrading on: quigon.federez.net [ 160.228.155.65 ] The following packages are currently pending an upgrade: krb5-locales 1.12.1+dfsg-19+deb8u1 libgssapi-krb5-2 1.12.1+dfsg-19+deb8u1 libk5crypto3 1.12.1+dfsg-19+deb8u1 libkrb5-3 1.12.1+dfsg-19+deb8u1 libkrb5support0 1.12.1+dfsg-19+deb8u1 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour krb5 (krb5-locales libgssapi-krb5-2 libk5crypto3 libkrb5-3 libkrb5support0) --- krb5 (1.12.1+dfsg-19+deb8u1) jessie-security; urgency=high * Import upstream patches for four CVEs: - CVE-2015-2695: SPNEGO context aliasing during establishment, Closes: #803083 - CVE-2015-2696: IAKERB context aliasing during establishment, Closes: #803084 - CVE-2015-2697: unsafe string handling in TGS processing, Closes: #803088 - CVE-2015-2698: regression (memory corruption) in patch for CVE-2015-2696 * In addition to CVE-2015-2698, the upstream patches for CVE-2015-2695 and CVE-2015-2696 introduced regressions preventing the use of gss_import_sec_context() with contexts established using IAKERB or SPNEGO; the fixes for those regressions are included here. -- Benjamin Kaduk <kaduk(a)mit.edu> Wed, 04 Nov 2015 22:05:10 -0500 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on quigon.federez.net -- apticron