- pull up fix for upstream #6745, in which the gssapi library would add the

wrong error table but subsequently attempt to unload the right one

krb5-1.7.1-24139.patch

@@ -0,0 +1,12 @@
+diff -up krb5-1.7.1/src/lib/gssapi/krb5/gssapi_krb5.c krb5-1.7.1/src/lib/gssapi/krb5/gssapi_krb5.c
+--- krb5-1.7.1/src/lib/gssapi/krb5/gssapi_krb5.c	2010-06-21 11:49:23.000000000 -0400
++++ krb5-1.7.1/src/lib/gssapi/krb5/gssapi_krb5.c	2010-06-21 11:49:25.000000000 -0400
+@@ -725,7 +725,7 @@ int gss_krb5int_lib_init(void)
+     printf("gss_krb5int_lib_init\n");
+ #endif
+ 
+-    add_error_table(&et_ggss_error_table);
++    add_error_table(&et_k5g_error_table);
+ 
+ #ifndef LEAN_CLIENT
+     err = k5_mutex_finish_init(&gssint_krb5_keytab_lock);

krb5.spec

@@ -45,6 +45,7 @@ Patch61: krb5-1.8-manpaths.patch
 Patch63: krb5-1.8-selinux-label.patch
 Patch70: krb5-trunk-kpasswd_tcp2.patch
 Patch71: krb5-1.8-dirsrv-accountlock.patch
+Patch72: krb5-1.7.1-24139.patch
 
 License: MIT
 URL: http://web.mit.edu/kerberos/www/
@@ -180,6 +181,7 @@ ln -s NOTICE LICENSE
 %patch59 -p1 -b .kpasswd_tcp
 #%patch70 -p0 -b .kpasswd_tcp2
 %patch71 -p1 -b .dirsrv-accountlock
+%patch72 -p1 -b .24139
 gzip doc/*.ps
 
 sed -i -e '1s!\[twoside\]!!;s!%\(\\usepackage{hyperref}\)!\1!' doc/api/library.tex
@@ -621,10 +623,17 @@ exit 0
 %{_sbindir}/uuserver
 
 %changelog
+* Mon Jun 21 2010 Nalin Dahyabhai <nalin@redhat.com>
+- pull up fix for upstream #6745, in which the gssapi library would add the
+  wrong error table but subsequently attempt to unload the right one
+
 * Thu Jun 10 2010 Nalin Dahyabhai <nalin@redhat.com> 1.8.2-1
 - update to 1.8.2
   - drop patches for CVE-2010-1320, CVE-2010-1321
 
+* Tue Jun  1 2010 Nalin Dahyabhai <nalin@redhat.com> 1.8.1-7
+- rebuild
+
 * Thu May 27 2010 Nalin Dahyabhai <nalin@redhat.com>
 - ksu: move session management calls to before we drop privileges, like
   su does (#596887), and don't skip the PAM account check for root or the