ELSA-2011-0200

ULN >
Oracle Linux Errata repository >
ELSA-2011-0200

ELSA-2011-0200 - krb5 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2011-02-10

Description

[1.8.2-3.4]
- add upstream patches to fix standalone kpropd exiting if the per-client
child process exits with an error, and hang or crash in the KDC when using
the LDAP kdb backend (CVE-2010-4022, CVE-2011-0281, CVE-2011-0282, #671101)

[1.8.2-3.3]
- pull up crypto changes made between 1.8.2 and 1.8.3 to fix upstream #6751,
assumed to already be there for the next fix
- incorporate candidate patch to fix various issues from MITKRB5-SA-2010-007
(CVE-2010-1323, CVE-2010-1324, CVE-2010-4020, #651962)

[1.8.2-3.2]
- fix reading of keyUsage extensions when attempting to select pkinit client
certs (part of #644825, RT#6775)
- fix selection of pkinit client certs when one or more don't include a
subjectAltName extension (part of #644825, RT#6774)

[1.8.2-3.1]
- incorporate candidate patch to fix uninitialized pointer crash in the KDC
(CVE-2010-1322, #636336)

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 6 (i386)	krb5-1.8.2-3.el6_0.4.src.rpm	8279c1c511416e9f6dfeddd1bc59aca1	ELSA-2016-0493
	krb5-devel-1.8.2-3.el6_0.4.i686.rpm	1d54881870fcb97730fa6c32c7db22f2	ELSA-2016-0493
	krb5-libs-1.8.2-3.el6_0.4.i686.rpm	06e23aeb3a00d8259c59ccc6d6c7d89f	ELSA-2016-0493
	krb5-pkinit-openssl-1.8.2-3.el6_0.4.i686.rpm	c3b85c7b356214126a8f3b3b00c43c66	ELSA-2016-0493
	krb5-server-1.8.2-3.el6_0.4.i686.rpm	a8b5493f4251443f9637ff9d95901f8a	ELSA-2016-0493
	krb5-server-ldap-1.8.2-3.el6_0.4.i686.rpm	14ea0b19bc80f9c0e957b1b9f9ac8973	ELSA-2016-0493
	krb5-workstation-1.8.2-3.el6_0.4.i686.rpm	875b40d2d06d9119d708bf3a977f44b4	ELSA-2016-0493

Oracle Linux 6 (x86_64)	krb5-1.8.2-3.el6_0.4.src.rpm	8279c1c511416e9f6dfeddd1bc59aca1	ELSA-2016-0493
	krb5-devel-1.8.2-3.el6_0.4.i686.rpm	1d54881870fcb97730fa6c32c7db22f2	ELSA-2016-0493
	krb5-devel-1.8.2-3.el6_0.4.x86_64.rpm	292e287dec69cc0a7a2a419229e4dbe8	ELSA-2016-0493
	krb5-libs-1.8.2-3.el6_0.4.i686.rpm	06e23aeb3a00d8259c59ccc6d6c7d89f	ELSA-2016-0493
	krb5-libs-1.8.2-3.el6_0.4.x86_64.rpm	20379ce4218d712bd7c2fbc2ec0b2981	ELSA-2016-0493
	krb5-pkinit-openssl-1.8.2-3.el6_0.4.x86_64.rpm	26aebf26f3eb0d3597ca90c43862d33f	ELSA-2016-0493
	krb5-server-1.8.2-3.el6_0.4.x86_64.rpm	c225b2b192f0aa702864b9a629c37ccf	ELSA-2016-0493
	krb5-server-ldap-1.8.2-3.el6_0.4.i686.rpm	14ea0b19bc80f9c0e957b1b9f9ac8973	ELSA-2016-0493
	krb5-server-ldap-1.8.2-3.el6_0.4.x86_64.rpm	39c7c9317703a69ef46c4dfc32c5edf8	ELSA-2016-0493
	krb5-workstation-1.8.2-3.el6_0.4.x86_64.rpm	c636e7d207943ab645034e71453f5b8d	ELSA-2016-0493

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691