ELSA-2016-2591

ULN >
Oracle Linux Errata repository >
ELSA-2016-2591

ELSA-2016-2591 - krb5 security, bug fix, and enhancement update

Type:	SECURITY
Impact:	LOW
Release Date:	2016-11-09

Description

[1.14.1-26]
- Use responder in non-preauth AS reqs
- Resolves: #1363690

[1.14.1-25]
- Fix bad debug_log() call in selinux handling
- Resolves: #1292153

[1.14.1-24]
- Fix KKDCPP with TLS SNI by always presenting 'Host:' header
- Resolves: #1364993

[1.14.1-23]
- Add dependency on libkadm5 to krb5-devel
- Resolves: #1347403

[1.14.1-22]
- Builders have new version of mock; adapt.
- Resolves: #1290239

[1.14.1-21]
- Fix CVE-2016-3120
- Resolves: #1361504

[1.14.1-20]
- Make version dependencies on libkadm5 more explicit to appease rpmdiff
- Resolves: #1347403

[1.14.1-19]
- Add in upstream version of kprop port and tests
- Resolves: #1292795

[1.14.1-18]
- Fix incorrect recv() size calculation in libkrad
- Resolves: #1349042

[1.14.1-17]
- Separate out the kadm5 libs
- Resolves: #1347403

[1.14.1-16]
- Fix kprop/iprop handling of default realm
- Fix t_kprop.py
- Resolves: #1290561
- Resolves: #1302967
- Resolves: #1292795

[1.14.1-15]
- Fix SPNEGO with NTLM to conform to MS-SPNG section 3.3.5.1
- Resolves: #1341726

[1.14.1-14]
- Do not indicate depricated mechanisms when requested
- Resolves: #1293908

[1.14.1-13]
- Fix OTP module incorrectly overwriting as_key
- Resolves: #1340304

[1.14.1-12]
- Fix CVE-2016-3119 (LDAP NULL dereference)
- Resolves: #1339562

[1.14.1-11]
- Make ksu not ask for password without -n
- Resolves: #1247261

[1.14.1-10]
- Frob kadm5 soname version so that the rebase does not break things
- Resolves: #1292153

[1.14.1-9]
- Revamp selinux patch to not leak memory
- Resolves: #1313457

[1.14.1-8]
- Add snippet support in /etc/krb5.conf.d
- Resolves: #1146945

[1.14.1-7]
- Skip unnecessary mech calls in gss_inquire_cred
- Resolves: #1314493

[1.14.1-6]
- Fix impersonate_name to work with interposers
- Resolves: #1284987

[1.14.1-5]
- Fix change tracking of krb5.conf
- Resolves: #1208243

[1.14.1-4]
- Ensure log files are not world-readable
- Resolves: #1256735

[1.14.1-3]
- Clean up initscript handling in spec file
- Resolves: #1283902
- Resolves: #1183058

[1.14.1-2]
- Backport spec file changes from Fedora
- Resolves: #1290239

[1.14.1-1]
- Rebase to new upstream version 1.14.1
- Remove pax logic
- Resolves: #1292153
- Resolves: #1135427
- Resolves: #1265509
- Resolves: #1265510
- Resolves: #1296241

Related CVEs

CVE-2016-3120

CVE-2016-3119

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	krb5-1.14.1-26.el7.src.rpm	ec3da7f248f4c826cb7549a2ece774aa5a83bff6b5a6f63da927fe490a00fafe	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-1.14.1-26.el7.src.rpm	ec3da7f248f4c826cb7549a2ece774aa5a83bff6b5a6f63da927fe490a00fafe	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-devel-1.14.1-26.el7.i686.rpm	2b3c2f0276357fa58257201dbfa927d7866001a01ce3b57f03ffefbb4726deda	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-devel-1.14.1-26.el7.i686.rpm	2b3c2f0276357fa58257201dbfa927d7866001a01ce3b57f03ffefbb4726deda	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-devel-1.14.1-26.el7.x86_64.rpm	6ee55ac3aed2baf16a9741bf3e61e22975278fffced41c6342ebdce1307490e1	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-devel-1.14.1-26.el7.x86_64.rpm	6ee55ac3aed2baf16a9741bf3e61e22975278fffced41c6342ebdce1307490e1	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-libs-1.14.1-26.el7.i686.rpm	b4f930517432382299da1cc9c6c43518fc84f1d2f424691de333de57c9c8ba8f	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-libs-1.14.1-26.el7.i686.rpm	b4f930517432382299da1cc9c6c43518fc84f1d2f424691de333de57c9c8ba8f	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-libs-1.14.1-26.el7.x86_64.rpm	1d9a76e759a836638ba793cdf24abb7436877d91832da336da72bdb3f9dc8691	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-libs-1.14.1-26.el7.x86_64.rpm	1d9a76e759a836638ba793cdf24abb7436877d91832da336da72bdb3f9dc8691	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-pkinit-1.14.1-26.el7.x86_64.rpm	2b85f1476f121d37eaf911ec962bf9a49c93d251e5c18d57d481f7bdfdfd9fbb	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-pkinit-1.14.1-26.el7.x86_64.rpm	2b85f1476f121d37eaf911ec962bf9a49c93d251e5c18d57d481f7bdfdfd9fbb	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-server-1.14.1-26.el7.x86_64.rpm	ce043dfabd8594ad974d487e693e0412aa927e2ece126b50a7cd1e272b8c26c2	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-server-1.14.1-26.el7.x86_64.rpm	ce043dfabd8594ad974d487e693e0412aa927e2ece126b50a7cd1e272b8c26c2	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-server-ldap-1.14.1-26.el7.x86_64.rpm	eacf07ee57531851e34214f559fff21eceebb472ec2b11fff8b479f6b7ef4d8b	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-server-ldap-1.14.1-26.el7.x86_64.rpm	eacf07ee57531851e34214f559fff21eceebb472ec2b11fff8b479f6b7ef4d8b	ELSA-2025-1352	ol7_x86_64_u3_base
	krb5-workstation-1.14.1-26.el7.x86_64.rpm	2a30ad82a17e0a68f1fe57d7ffd1f4288b87bddff251efb5ffe0efed05b1b6b7	ELSA-2025-1352	ol7_x86_64_latest_archive
	krb5-workstation-1.14.1-26.el7.x86_64.rpm	2a30ad82a17e0a68f1fe57d7ffd1f4288b87bddff251efb5ffe0efed05b1b6b7	ELSA-2025-1352	ol7_x86_64_u3_base
	libkadm5-1.14.1-26.el7.i686.rpm	8e0ad5eee2a7ca4e14ac8a40080e30a1b498183bb84da5aa7d3e57c69c25335d	ELSA-2025-1352	ol7_x86_64_latest_archive
	libkadm5-1.14.1-26.el7.i686.rpm	8e0ad5eee2a7ca4e14ac8a40080e30a1b498183bb84da5aa7d3e57c69c25335d	ELSA-2025-1352	ol7_x86_64_u3_base
	libkadm5-1.14.1-26.el7.x86_64.rpm	b733b80209ec12efed85bdbc8dd58653f878634c570713e8cd01447270aa2698	ELSA-2025-1352	ol7_x86_64_latest_archive
	libkadm5-1.14.1-26.el7.x86_64.rpm	b733b80209ec12efed85bdbc8dd58653f878634c570713e8cd01447270aa2698	ELSA-2025-1352	ol7_x86_64_u3_base

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691