ELSA-2013-0656

ULN >
Oracle Linux Errata repository >
ELSA-2013-0656

ELSA-2013-0656 - krb5 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2013-03-18

Description

[1.10.3-10.1]
- incorporate upstream patch to fix a NULL pointer dereference when the client
supplies an otherwise-normal-looking PKINIT request (CVE-2013-1415, #917909)
- add patch to avoid dereferencing a NULL pointer in the KDC when handling a
draft9 PKINIT request (#917909, CVE-2012-1016)

Related CVEs

CVE-2012-1016

CVE-2013-1415

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	krb5-1.10.3-10.el6_4.1.src.rpm	dcc7014175b84024915d3c8ce5e879fd1470098025de1aca5cd88158b3cfce64	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-1.10.3-10.el6_4.1.src.rpm	dcc7014175b84024915d3c8ce5e879fd1470098025de1aca5cd88158b3cfce64	ELSA-2016-0493	ol6_u4_i386_patch
	krb5-devel-1.10.3-10.el6_4.1.i686.rpm	838168f5a39667b586d8cab7345f0069acdb42a97919dce103a3788c892098a5	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-devel-1.10.3-10.el6_4.1.i686.rpm	838168f5a39667b586d8cab7345f0069acdb42a97919dce103a3788c892098a5	ELSA-2016-0493	ol6_u4_i386_patch
	krb5-libs-1.10.3-10.el6_4.1.i686.rpm	18a3c3506bc329cd882b4258cbb6e46b9941d8f461b32f3af1a233e760349ddf	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-libs-1.10.3-10.el6_4.1.i686.rpm	18a3c3506bc329cd882b4258cbb6e46b9941d8f461b32f3af1a233e760349ddf	ELSA-2016-0493	ol6_u4_i386_patch
	krb5-pkinit-openssl-1.10.3-10.el6_4.1.i686.rpm	94df7d45ab04680efdd4e7e45307bc13a4e4414485a29b0173dbf3d02aeaa406	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-pkinit-openssl-1.10.3-10.el6_4.1.i686.rpm	94df7d45ab04680efdd4e7e45307bc13a4e4414485a29b0173dbf3d02aeaa406	ELSA-2016-0493	ol6_u4_i386_patch
	krb5-server-1.10.3-10.el6_4.1.i686.rpm	a0ce828768809fc74aea9faf6fd4088037d708a0765e3b40727cc95aa872131a	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-server-1.10.3-10.el6_4.1.i686.rpm	a0ce828768809fc74aea9faf6fd4088037d708a0765e3b40727cc95aa872131a	ELSA-2016-0493	ol6_u4_i386_patch
	krb5-server-ldap-1.10.3-10.el6_4.1.i686.rpm	710ee208b8c1eff7aba7d6043c56017393f9865740268c16a79c44f3a3829203	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-server-ldap-1.10.3-10.el6_4.1.i686.rpm	710ee208b8c1eff7aba7d6043c56017393f9865740268c16a79c44f3a3829203	ELSA-2016-0493	ol6_u4_i386_patch
	krb5-workstation-1.10.3-10.el6_4.1.i686.rpm	b5f56a781e9bc857fdb0bdfe9d81915766f5a4ee19b9d4833e6064a5cd62b7a2	ELSA-2016-0493	ol6_i386_latest_archive
	krb5-workstation-1.10.3-10.el6_4.1.i686.rpm	b5f56a781e9bc857fdb0bdfe9d81915766f5a4ee19b9d4833e6064a5cd62b7a2	ELSA-2016-0493	ol6_u4_i386_patch

Oracle Linux 6 (x86_64)	krb5-1.10.3-10.el6_4.1.src.rpm	dcc7014175b84024915d3c8ce5e879fd1470098025de1aca5cd88158b3cfce64	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-1.10.3-10.el6_4.1.src.rpm	dcc7014175b84024915d3c8ce5e879fd1470098025de1aca5cd88158b3cfce64	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-devel-1.10.3-10.el6_4.1.i686.rpm	838168f5a39667b586d8cab7345f0069acdb42a97919dce103a3788c892098a5	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-devel-1.10.3-10.el6_4.1.i686.rpm	838168f5a39667b586d8cab7345f0069acdb42a97919dce103a3788c892098a5	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-devel-1.10.3-10.el6_4.1.x86_64.rpm	67ccdc5b872ffeb280763df956e817aeef802a48d474e9cdba329aabd3fd0f90	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-devel-1.10.3-10.el6_4.1.x86_64.rpm	67ccdc5b872ffeb280763df956e817aeef802a48d474e9cdba329aabd3fd0f90	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-libs-1.10.3-10.el6_4.1.i686.rpm	18a3c3506bc329cd882b4258cbb6e46b9941d8f461b32f3af1a233e760349ddf	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-libs-1.10.3-10.el6_4.1.i686.rpm	18a3c3506bc329cd882b4258cbb6e46b9941d8f461b32f3af1a233e760349ddf	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-libs-1.10.3-10.el6_4.1.x86_64.rpm	7d3ca5d8afd51ada570b9e2a481d8ced65ce886d905fed6c5fcf9993a8a49db0	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-libs-1.10.3-10.el6_4.1.x86_64.rpm	7d3ca5d8afd51ada570b9e2a481d8ced65ce886d905fed6c5fcf9993a8a49db0	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-pkinit-openssl-1.10.3-10.el6_4.1.x86_64.rpm	9987e0a4bcc15f3dc01850176d5ef46309d050cc2e3aef8c69d0dbb7c6925f17	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-pkinit-openssl-1.10.3-10.el6_4.1.x86_64.rpm	9987e0a4bcc15f3dc01850176d5ef46309d050cc2e3aef8c69d0dbb7c6925f17	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-server-1.10.3-10.el6_4.1.x86_64.rpm	f7ed696df198b7dcccbaf779cbd2cc1e81e679c74aa6bbec1acc1438cc33159c	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-server-1.10.3-10.el6_4.1.x86_64.rpm	f7ed696df198b7dcccbaf779cbd2cc1e81e679c74aa6bbec1acc1438cc33159c	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-server-ldap-1.10.3-10.el6_4.1.i686.rpm	710ee208b8c1eff7aba7d6043c56017393f9865740268c16a79c44f3a3829203	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-server-ldap-1.10.3-10.el6_4.1.i686.rpm	710ee208b8c1eff7aba7d6043c56017393f9865740268c16a79c44f3a3829203	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-server-ldap-1.10.3-10.el6_4.1.x86_64.rpm	30b9eb88b50e9d487a2b74116b40f7ed588668c7331aa68ced8069495992126f	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-server-ldap-1.10.3-10.el6_4.1.x86_64.rpm	30b9eb88b50e9d487a2b74116b40f7ed588668c7331aa68ced8069495992126f	ELSA-2016-0493	ol6_x86_64_latest_archive
	krb5-workstation-1.10.3-10.el6_4.1.x86_64.rpm	7021cd4b7a925bf07dee68d2e9c256c9ef2e072b6428516a3e96ffd7dac8dd9b	ELSA-2016-0493	ol6_u4_x86_64_patch
	krb5-workstation-1.10.3-10.el6_4.1.x86_64.rpm	7021cd4b7a925bf07dee68d2e9c256c9ef2e072b6428516a3e96ffd7dac8dd9b	ELSA-2016-0493	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691