MDVSA-2011:159

Package name

krb5

Date

2011-10-22

Advisory ID

MDVSA-2011:159

Affected versions

2011 i586 , 2011 x86_64

Problem description

Multiple vulnerabilities has been found and corrected in krb5:

The kdb_ldap plugin in the Key Distribution Center (KDC) in
MIT Kerberos 5 (aka krb5) 1.9 through 1.9.1, when the LDAP
back end is used, allows remote attackers to cause a denial of
service (NULL pointer dereference and daemon crash) via a kinit
operation with incorrect string case for the realm, related to the
is_principal_in_realm, krb5_set_error_message, krb5_ldap_get_principal,
and process_as_req functions (CVE-2011-1527).

The krb5_ldap_lockout_audit function in the Key Distribution Center
(KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through
1.9.1, when the LDAP back end is used, allows remote attackers to cause
a denial of service (assertion failure and daemon exit) via unspecified
vectors, related to the locked_check_p function (CVE-2011-1528).

The lookup_lockout_policy function in the Key Distribution Center (KDC)
in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1,
when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote
attackers to cause a denial of service (NULL pointer dereference and
daemon crash) via vectors that trigger certain process_as_req errors
(CVE-2011-1529).

The updated packages have been patched to correct these issues.

Updated packages

2011 i586

 cec18dcb661488f6203f1ece61b635d1  2011/i586/krb5-1.9.1-1.1-mdv2011.0.i586.rpm
 a4a3f2eee29c35048289de09ecf52ed8  2011/i586/krb5-pkinit-openssl-1.9.1-1.1-mdv2011.0.i586.rpm
 5e73f3eb097442260b8b683b48a3497c  2011/i586/krb5-server-1.9.1-1.1-mdv2011.0.i586.rpm
 83401420817b2e182d6096a7fab0b4d4  2011/i586/krb5-server-ldap-1.9.1-1.1-mdv2011.0.i586.rpm
 8d038ca1ea3baa3862df07b714196e29  2011/i586/krb5-workstation-1.9.1-1.1-mdv2011.0.i586.rpm
 666e6590112610d0974c808c18e15857  2011/i586/libkrb53-1.9.1-1.1-mdv2011.0.i586.rpm
 822e804be6b1b6c6daf4036e58c8d097  2011/i586/libkrb53-devel-1.9.1-1.1-mdv2011.0.i586.rpm 
 44b9f82fcf337955b550e2b8279cc319  2011/SRPMS/krb5-1.9.1-1.1.src.rpm

2011 x86_64

 c1a3ce4fed380b27b58fdb5a1de4a225  2011/x86_64/krb5-1.9.1-1.1-mdv2011.0.x86_64.rpm
 31abe59dbe968c413e91d9bc8f58cc6f  2011/x86_64/krb5-pkinit-openssl-1.9.1-1.1-mdv2011.0.x86_64.rpm
 3978b0e72b6f25f816554cb3f632fbd9  2011/x86_64/krb5-server-1.9.1-1.1-mdv2011.0.x86_64.rpm
 03b1d9c2b9ef5a18af5f47e93c7f5b7b  2011/x86_64/krb5-server-ldap-1.9.1-1.1-mdv2011.0.x86_64.rpm
 8c9cf44a634d326e5fcc03adad2c673f  2011/x86_64/krb5-workstation-1.9.1-1.1-mdv2011.0.x86_64.rpm
 cb1303ca942bc49cfa41e7871dc8ace8  2011/x86_64/lib64krb53-1.9.1-1.1-mdv2011.0.x86_64.rpm
 6317fcfa9e3e569645f5a6df6250ce34  2011/x86_64/lib64krb53-devel-1.9.1-1.1-mdv2011.0.x86_64.rpm 
 44b9f82fcf337955b550e2b8279cc319  2011/SRPMS/krb5-1.9.1-1.1.src.rpm

References

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1529
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1528
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1527