Re: HEADS UP: MIT KRB5 1.22.1 Import

In reply to: Cy Schubert : "Re: HEADS UP: MIT KRB5 1.22.1 Import"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Cy Schubert <Cy.Schubert_at_cschubert.com>
Date: Thu, 21 Aug 2025 09:39:22 UTC

In message <20250821093615.B4293211@slippy.cwsent.com>, Cy Schubert writes:
> In message <86frdlkw30.fsf@ltc.des.dev>, =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?
> = w
> rites:
> > Cy Schubert <Cy.Schubert@cschubert.com> writes:
> > > KRB5 1.22.0 released with a GSSAPI bug (CVE-2025-57736). The point patch=
> > =20
> > > was applied on Aug 19 (f96110babbe1). 1.22.1 contains the point patch plu
> =
> > s=20
> > > an additional GSSAPI patch. I intend to commit it to HEAD after a few day
> =
> > s=20
> > > of testing on Aug 25.
> >
> > Please post your patch for review (using git arc, as described in the
> > committers guide) so others can test it too.
>
> git arc does not work with vendor merges. There is a way to trick it though.

See https://reviews.freebsd.org/D52083 for full patch.


-- 
Cheers,
Cy Schubert <Cy.Schubert@cschubert.com>
FreeBSD UNIX:  <cy@FreeBSD.org>   Web:  https://FreeBSD.org
NTP:           <cy@nwtime.org>    Web:  https://nwtime.org

			e**(i*pi)+1=0