krb5-appl-1.0.1-7.AXS4
エラータID: AXSA:2012-28:01
Release date:
Thursday, January 19, 2012 - 11:38
Subject:
krb5-appl-1.0.1-7.AXS4
Affected Channels:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
This package contains Kerberos-aware versions of the telnet, ftp, rcp, rsh, and rlogin clients and servers. While these have been replaced by tools such as OpenSSH in most environments, they remain in use in others.
Security issues fixed with this release:
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, and Heimdal 1.5.1 and earlier allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
Solution:
Update packages.
CVEs:
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
Additional Info:
N/A
Download:
SRPMS
- krb5-appl-1.0.1-7.AXS4.src.rpm
MD5: fdb5121a95b3356cb30cd020cd457959
SHA-256: dce0017535fcd491bafce77eeb48d3e60a840116b092612df12dc50e2c1e2c09
Size: 724.36 kB
Asianux Server 4 for x86
- krb5-appl-clients-1.0.1-7.AXS4.i686.rpm
MD5: 52e019808f943d8e736230ff3cfa9307
SHA-256: faacc69125dc299b286f32fd0f1375024377da8af90ccdc4fa669dce4311097c
Size: 223.69 kB - krb5-appl-servers-1.0.1-7.AXS4.i686.rpm
MD5: 3330ae8e01a229ff729d1870ca945dd6
SHA-256: 365cd62af7cd35a21f8a20f6939fb9a205fb8738f1f73e650bee11738792cf39
Size: 199.54 kB
Asianux Server 4 for x86_64
- krb5-appl-clients-1.0.1-7.AXS4.x86_64.rpm
MD5: 17a47cd1e73a09fb17d02020b5a5f24a
SHA-256: 84c7590f33cdce4bd96732f5e98187d69e77626140bb752c16192c9bf5f54157
Size: 228.12 kB - krb5-appl-servers-1.0.1-7.AXS4.x86_64.rpm
MD5: b2579fbb53b49513928414f0af8349be
SHA-256: 31730eea583390e56d3cb86d4d3b575d1a644f458e97aee0fdbfffff692014f9
Size: 201.82 kB
日本語