Nom du paquet
krb5
Date
2013-11-21
Advisory ID
MDVSA-2013:275
Affected versions
MES5 i586 , MBS1 x86_64 , MES5 x86_64

Problem description

Updated krb5 package fixes security vulnerabily:

If a KDC serves multiple realms, certain requests can cause
setup_server_realm() to dereference a null pointer, crashing
the KDC. This can be triggered by an unauthenticated user
(CVE-2013-1418).

Updated packages

MES5 i586

 c6e2a12f9334c9b0861f738e309ef21c  mes5/i586/krb5-1.8.1-0.12mdvmes5.2.i586.rpm
 099870aeac2424420be5a47718443e88  mes5/i586/krb5-pkinit-openssl-1.8.1-0.12mdvmes5.2.i586.rpm
 f683b619aed5b347c7d6b92070a86b77  mes5/i586/krb5-server-1.8.1-0.12mdvmes5.2.i586.rpm
 369a1ac36bd88019c207aa1982f50753  mes5/i586/krb5-server-ldap-1.8.1-0.12mdvmes5.2.i586.rpm
 b303c5a842bc235c64cf1521e905bf4e  mes5/i586/krb5-workstation-1.8.1-0.12mdvmes5.2.i586.rpm
 24b5128661cb61497a8965abfc1b0e43  mes5/i586/libkrb53-1.8.1-0.12mdvmes5.2.i586.rpm
 f5dba26c5fdf746de303591346b8de63  mes5/i586/libkrb53-devel-1.8.1-0.12mdvmes5.2.i586.rpm 
 56849bc96afd72468707d055d286ce0a  mes5/SRPMS/krb5-1.8.1-0.12mdvmes5.2.src.rpm

MBS1 x86_64

 76b585b948b99099d7f4176af973f0fd  mbs1/x86_64/krb5-1.9.2-3.4.mbs1.x86_64.rpm
 1081705b0e90cf301fe6a709d5f3661f  mbs1/x86_64/krb5-pkinit-openssl-1.9.2-3.4.mbs1.x86_64.rpm
 dc28a054d134b3c74d5de881407e8391  mbs1/x86_64/krb5-server-1.9.2-3.4.mbs1.x86_64.rpm
 006ede11ef91663f9f03a270110db97a  mbs1/x86_64/krb5-server-ldap-1.9.2-3.4.mbs1.x86_64.rpm
 a86c414f752c1a663a304d8151116d02  mbs1/x86_64/krb5-workstation-1.9.2-3.4.mbs1.x86_64.rpm
 d1fac5ab68f0f8df723d9d83abcfef78  mbs1/x86_64/lib64krb53-1.9.2-3.4.mbs1.x86_64.rpm
 1ec050aa3173941d0e4dbdb501085315  mbs1/x86_64/lib64krb53-devel-1.9.2-3.4.mbs1.x86_64.rpm 
 fb6fa067fd8857905b0433d366470c15  mbs1/SRPMS/krb5-1.9.2-3.4.mbs1.src.rpm

MES5 x86_64

 aaf04d799c2bb6e9bac4dc9f0c24ba99  mes5/x86_64/krb5-1.8.1-0.12mdvmes5.2.x86_64.rpm
 29b3214d94a789911404d03a1e176403  mes5/x86_64/krb5-pkinit-openssl-1.8.1-0.12mdvmes5.2.x86_64.rpm
 46ffafde92974ccc43501486b53028db  mes5/x86_64/krb5-server-1.8.1-0.12mdvmes5.2.x86_64.rpm
 1ad22a59ef287c424f6eaae5cc891365  mes5/x86_64/krb5-server-ldap-1.8.1-0.12mdvmes5.2.x86_64.rpm
 63aa45265bc290f807cf14d4aa43843f  mes5/x86_64/krb5-workstation-1.8.1-0.12mdvmes5.2.x86_64.rpm
 c884dcc1f33f1f802c2d8cee153cea85  mes5/x86_64/lib64krb53-1.8.1-0.12mdvmes5.2.x86_64.rpm
 ff88b48603330887ddf7d7c732600a7e  mes5/x86_64/lib64krb53-devel-1.8.1-0.12mdvmes5.2.x86_64.rpm 
 56849bc96afd72468707d055d286ce0a  mes5/SRPMS/krb5-1.8.1-0.12mdvmes5.2.src.rpm

References