Re: git: f1c4c3daccba - main - krb5: Update MIT KRB5 from 1.21 to 1.22
- In reply to: Lexi Winter : "Re: git: f1c4c3daccba - main - krb5: Update MIT KRB5 from 1.21 to 1.22"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Mon, 18 Aug 2025 05:52:18 UTC
In message <aKGL4nE2YUSNiqJC@amaryllis.le-fay.org>, Lexi Winter writes: > > --Bghpo0KvGWo6IE0X > Content-Type: text/plain; charset=us-ascii > Content-Disposition: inline > Content-Transfer-Encoding: quoted-printable > > Herbert J. Skuhra: > > On Sun, 10 Aug 2025 07:32:04 +0200, Cy Schubert wrote: > > > krb5: Update MIT KRB5 from 1.21 to 1.22 > >=20 > > krb5-1.22 is withdrawn: > >=20 > > Due to a critical bug, krb5-1.22 has been withdrawn, and krb5-1.21.3 is= > =20 > > again the latest supported release. krb5-1.22.1 will be issued with a=20 > > correction. > > i assume the bug in question is this one: > https://krbdev.mit.edu/rt/Ticket/Display.html?id=3D9181 That bug was announced on the krbdev ML yesterday. > > the ticket doesn't mention whether it has any security impact or not. > if not, we're probably better off waiting for 1.22.1 rather than > reverting. A patch has been posted to the krbdev ML. It will be released in krb5 1.22.1 in a few days. I'm watching the ML for the release announcement. You can find our review at https://reviews.freebsd.org/D51990. I've been running it here since earlier today. -- Cheers, Cy Schubert <Cy.Schubert@cschubert.com> FreeBSD UNIX: <cy@FreeBSD.org> Web: https://FreeBSD.org NTP: <cy@nwtime.org> Web: https://nwtime.org e**(i*pi)+1=0