Date: Sun, 17 Aug 2025 22:52:18 -0700 From: Cy Schubert <Cy.Schubert@cschubert.com> To: "Herbert J. Skuhra" <herbert@gojira.at>, current@freebsd.org Subject: Re: git: f1c4c3daccba - main - krb5: Update MIT KRB5 from 1.21 to 1.22 Message-ID: <20250818055218.D8235126@slippy.cwsent.com> In-Reply-To: <aKGL4nE2YUSNiqJC@amaryllis.le-fay.org> References: <202508100532.57A5W4Dl038254@gitrepo.freebsd.org> <87zfby8jv6.wl-herbert@gojira.at> <aKGL4nE2YUSNiqJC@amaryllis.le-fay.org>
index | next in thread | previous in thread | raw e-mail
In message <aKGL4nE2YUSNiqJC@amaryllis.le-fay.org>, Lexi Winter writes: > > --Bghpo0KvGWo6IE0X > Content-Type: text/plain; charset=us-ascii > Content-Disposition: inline > Content-Transfer-Encoding: quoted-printable > > Herbert J. Skuhra: > > On Sun, 10 Aug 2025 07:32:04 +0200, Cy Schubert wrote: > > > krb5: Update MIT KRB5 from 1.21 to 1.22 > >=20 > > krb5-1.22 is withdrawn: > >=20 > > Due to a critical bug, krb5-1.22 has been withdrawn, and krb5-1.21.3 is= > =20 > > again the latest supported release. krb5-1.22.1 will be issued with a=20 > > correction. > > i assume the bug in question is this one: > https://krbdev.mit.edu/rt/Ticket/Display.html?id=3D9181 That bug was announced on the krbdev ML yesterday. > > the ticket doesn't mention whether it has any security impact or not. > if not, we're probably better off waiting for 1.22.1 rather than > reverting. A patch has been posted to the krbdev ML. It will be released in krb5 1.22.1 in a few days. I'm watching the ML for the release announcement. You can find our review at https://reviews.freebsd.org/D51990. I've been running it here since earlier today. -- Cheers, Cy Schubert <Cy.Schubert@cschubert.com> FreeBSD UNIX: <cy@FreeBSD.org> Web: https://FreeBSD.org NTP: <cy@nwtime.org> Web: https://nwtime.org e**(i*pi)+1=0help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20250818055218.D8235126>