LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for January 8, 2009

Btrfs aims for the mainline

The Android Dev Phone 1

LWN.net Weekly Edition for December 25, 2008

The Grumpy Editor's 2008 retrospective

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

Fedora alert FEDORA-2007-690 (krb5)



From:
    	      "Nalin Dahyabhai" <nalin@redhat.com>


To:
    	      fedora-package-announce@redhat.com


Subject:
    	      [SECURITY] Fedora Core 6 Update: krb5-1.5-22.fc6


Date:
    	      Tue, 4 Sep 2007 17:28:43 -0400


Message-ID:
    	      <200709042128.l84LShkj025738@int-mx1.corp.redhat.com>


---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-690
2007-09-04
---------------------------------------------------------------------

Product     : Fedora Core 6
Name        : krb5
Version     : 1.5
Release     : 22.fc6
Summary     : The Kerberos network authentication system.
Description :
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of cleartext passwords.

---------------------------------------------------------------------
Update Information:

This update incorporates fixes for a stack overflow in the
rpcsec_gss implementation in libgssrpc (CVE-2007-3999) and a
potential write through an uninitialized pointer in kadmind
(CVE-2007-4000).
---------------------------------------------------------------------
* Tue Sep  4 2007 Nalin Dahyabhai <nalin@redhat.com> 1.5-22
- incorporate fixes for MITKRB5-SA-2007-006 (CVE-2007-3999, CVE-2007-4000)

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/u...

2c2925a63619de780833980d61ef43aa37937666  SRPMS/krb5-1.5-22.fc6.src.rpm
2c2925a63619de780833980d61ef43aa37937666  noarch/krb5-1.5-22.fc6.src.rpm
75559659a0226d5eb04a8384027b6cd464c9ba87  ppc/debug/krb5-debuginfo-1.5-22.fc6.ppc.rpm
1c7574ffd06ab4f5f45a4acfb6f966317a158fe9  ppc/krb5-workstation-1.5-22.fc6.ppc.rpm
f479ce011ae0f5de91b82755d97fd34cecb47d32  ppc/krb5-libs-1.5-22.fc6.ppc.rpm
d855d2ffcbc04705c887be841226b5a250e488ab  ppc/krb5-server-1.5-22.fc6.ppc.rpm
7db4d88f6ff96ac65ddb0e6e41c35a8a16d19200  ppc/krb5-devel-1.5-22.fc6.ppc.rpm
27f4caa430271bcd6d0e4a60a824d18f1bf131eb  x86_64/krb5-workstation-1.5-22.fc6.x86_64.rpm
4dc142612c46b6d048d666e0b795aede552d2acf  x86_64/krb5-libs-1.5-22.fc6.x86_64.rpm
3a1fa8f8089b6f7a4663c2c974b69135d4b99453  x86_64/debug/krb5-debuginfo-1.5-22.fc6.x86_64.rpm
939312baff39e077ad8e5936609fdf59672368e4  x86_64/krb5-server-1.5-22.fc6.x86_64.rpm
42db25241a4505a32422f99eb779d86844358a83  x86_64/krb5-devel-1.5-22.fc6.x86_64.rpm
f278713e5f11be11bca6af87b3aa5ec318283b63  i386/krb5-libs-1.5-22.fc6.i386.rpm
0840f16f3112ebf65b34c619bd042bd66740f1a2  i386/krb5-workstation-1.5-22.fc6.i386.rpm
56ec4e9df8d23d916bfd8d5c5dc481f289f9127d  i386/krb5-devel-1.5-22.fc6.i386.rpm
46ae95b85a6ee12c5d790d7861e6c8e836ec6631  i386/krb5-server-1.5-22.fc6.i386.rpm
c57a7e5ea7662dc5c9a5bfb9eb692bd0b70194a0  i386/debug/krb5-debuginfo-1.5-22.fc6.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-ann...
(Log in to post comments)

Copyright © 2009, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds