ELSA-2015-0794

ELSA-2015-0794 - krb5 security update

Type:SECURITY
Severity:MODERATE
Release Date:2015-04-09

Description


[1.10.3-37]
- fix for CVE-2014-5355 (#1193939) 'krb5: unauthenticated
denial of service in recvauth_common() and others'

[1.10.3-36]
- fix for CVE-2014-5353 (#1174543) 'Fix LDAP misused policy
name crash'

[1.10.3-35]
- Changelog fixes to make errata subsystem happy.

[1.10.3-34]
- fix for CVE-2014-5352 (#1179856) 'gss_process_context_token()
incorrectly frees context (MITKRB5-SA-2015-001)'
- fix for CVE-2014-9421 (#1179857) 'kadmind doubly frees partial
deserialization results (MITKRB5-SA-2015-001)'
- fix for CVE-2014-9422 (#1179861) 'kadmind incorrectly
validates server principal name (MITKRB5-SA-2015-001)'


Related CVEs


CVE-2014-5352
CVE-2014-5353
CVE-2014-9421
CVE-2014-9422
CVE-2014-5355

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) krb5-1.10.3-37.el6_6.src.rpm2bb8ea661d8eee3aba7d72fe1095be62ELSA-2016-0493
krb5-devel-1.10.3-37.el6_6.i686.rpme19044762adff966deffff83adcaae77ELSA-2016-0493
krb5-libs-1.10.3-37.el6_6.i686.rpm91e9ad077eeca3bca0c5dd104d64dec7ELSA-2016-0493
krb5-pkinit-openssl-1.10.3-37.el6_6.i686.rpm6acb17977a10e99a15bbbd193e892f1eELSA-2016-0493
krb5-server-1.10.3-37.el6_6.i686.rpmfa5b22ded0e1ce07251c50266495b1a3ELSA-2016-0493
krb5-server-ldap-1.10.3-37.el6_6.i686.rpmec1d3866549aa0f535e389603d1c2b4cELSA-2016-0493
krb5-workstation-1.10.3-37.el6_6.i686.rpm03380baa4070f3bb1a163a869ea2009fELSA-2016-0493
Oracle Linux 6 (x86_64) krb5-1.10.3-37.el6_6.src.rpm2bb8ea661d8eee3aba7d72fe1095be62ELSA-2016-0493
krb5-devel-1.10.3-37.el6_6.i686.rpme19044762adff966deffff83adcaae77ELSA-2016-0493
krb5-devel-1.10.3-37.el6_6.x86_64.rpm74dc0a257874420553398cf6b6205e5eELSA-2016-0493
krb5-libs-1.10.3-37.el6_6.i686.rpm91e9ad077eeca3bca0c5dd104d64dec7ELSA-2016-0493
krb5-libs-1.10.3-37.el6_6.x86_64.rpma381bd8d9e3498c8628fd81bb8b27fedELSA-2016-0493
krb5-pkinit-openssl-1.10.3-37.el6_6.x86_64.rpm2a5c52b94ff1c51252cb8952d3a74224ELSA-2016-0493
krb5-server-1.10.3-37.el6_6.x86_64.rpmc1568c25f929c31e89bb108bb9799fecELSA-2016-0493
krb5-server-ldap-1.10.3-37.el6_6.i686.rpmec1d3866549aa0f535e389603d1c2b4cELSA-2016-0493
krb5-server-ldap-1.10.3-37.el6_6.x86_64.rpm09038a4f3c4217a91be7e90db63a0e17ELSA-2016-0493
krb5-workstation-1.10.3-37.el6_6.x86_64.rpm1ffdf1c1ab755cdf7eb284198ebe5f3bELSA-2016-0493



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete