krb5-1.10.3-10.AXS4.2
エラータID: AXSA:2013-413:02
Release date:
Friday, April 26, 2013 - 20:08
Subject:
krb5-1.10.3-10.AXS4.2
Affected Channels:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form.
Security issues fixed with this release:
• CVE-2013-1416
The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request.
Solution:
Update packages.
CVEs:
CVE-2013-1416
The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request.
The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request.
Additional Info:
N/A
Download:
SRPMS
- krb5-1.10.3-10.AXS4.2.src.rpm
MD5: 73295c353ea9498985290b0048318864
SHA-256: 188e569f2af5dd72316d097f78d288f73e7ff22cfafc9d53b331e493d2e44b64
Size: 11.48 MB
Asianux Server 4 for x86
- krb5-devel-1.10.3-10.AXS4.2.i686.rpm
MD5: f513dcf104877b0b8cbb2762fbcfad1a
SHA-256: de8edd77ff50ba612ad535e4b561d032563fa683e027f25e4b4c1a4e32cdda25
Size: 492.34 kB - krb5-libs-1.10.3-10.AXS4.2.i686.rpm
MD5: e15488f603056c4859c5a09b1f2c941c
SHA-256: fb48d8a207dd2461b0a62e821d6caa605fd3b508d1881a61567e4028879f7320
Size: 767.83 kB - krb5-pkinit-openssl-1.10.3-10.AXS4.2.i686.rpm
MD5: c388dccd5e73ed5496c364c96b7f0341
SHA-256: a9c19d4985ee8db284e6b84e8d72674c472e35f9c91fbcf80ab5a1ad9bd42902
Size: 116.64 kB - krb5-server-1.10.3-10.AXS4.2.i686.rpm
MD5: 35b1a9ed55b91cce9b7fa6b27c63fb82
SHA-256: 7830bcd3d72c7609ce8a674879f60dcdc9a2a23dee0749ba16cfd59e54e7be85
Size: 1.98 MB - krb5-server-ldap-1.10.3-10.AXS4.2.i686.rpm
MD5: 15443c5bd11144d90c0bc30f8d585b76
SHA-256: eb3ee14f16e036cf1566165474a39ef36a43d6c2142bdb99a1a3b66bb87676a3
Size: 150.66 kB - krb5-workstation-1.10.3-10.AXS4.2.i686.rpm
MD5: 47c060431b244ba74ddf2436b69e5384
SHA-256: e634dbd0d8c6299242b650382027df54f7e8bc7c4d27ec16c366067bbbb56da0
Size: 800.99 kB
Asianux Server 4 for x86_64
- krb5-devel-1.10.3-10.AXS4.2.x86_64.rpm
MD5: c36af093ba93174b0a2811b61c2838c8
SHA-256: f5584b652abc2cb5db8ef6b29174869ec3b658ea5f0b42e79a6aa1956ccc24eb
Size: 493.16 kB - krb5-libs-1.10.3-10.AXS4.2.x86_64.rpm
MD5: 9fce2a8c2266b5483cca7e6ae9084677
SHA-256: fa0a0c8e88655ddbdae8c2c4cf3bfd379d678fb9f134f22465a9d362b227ac47
Size: 759.14 kB - krb5-pkinit-openssl-1.10.3-10.AXS4.2.x86_64.rpm
MD5: fce415b479caaa861728846d5c0cb8b8
SHA-256: 78e11e6bbd419d273571863de042b1e7ddf49725c77af5be718cc90ad8f8e912
Size: 116.44 kB - krb5-server-1.10.3-10.AXS4.2.x86_64.rpm
MD5: 3004a3a419a834c0850b3dee4621c5f1
SHA-256: 0f753a837465298fe101fb63cd2ed6540790f09b24208596517f736b409d7e8c
Size: 1.98 MB - krb5-server-ldap-1.10.3-10.AXS4.2.x86_64.rpm
MD5: 6da1b5f58b0ebaf025bbe7fee8f84827
SHA-256: 11836fc4c03078f4a98b335a88e1ae1a99ff8ef0f6b0e4a4ba08e36b8077a239
Size: 150.57 kB - krb5-workstation-1.10.3-10.AXS4.2.x86_64.rpm
MD5: fde142e62f5b0036c38aaccaeba5a57f
SHA-256: 9300bf6e72474efa1976a25a2d2001d31b01827774968c8356c0f1db8ece1e81
Size: 803.49 kB - krb5-devel-1.10.3-10.AXS4.2.i686.rpm
MD5: f513dcf104877b0b8cbb2762fbcfad1a
SHA-256: de8edd77ff50ba612ad535e4b561d032563fa683e027f25e4b4c1a4e32cdda25
Size: 492.34 kB - krb5-libs-1.10.3-10.AXS4.2.i686.rpm
MD5: e15488f603056c4859c5a09b1f2c941c
SHA-256: fb48d8a207dd2461b0a62e821d6caa605fd3b508d1881a61567e4028879f7320
Size: 767.83 kB - krb5-server-ldap-1.10.3-10.AXS4.2.i686.rpm
MD5: 15443c5bd11144d90c0bc30f8d585b76
SHA-256: eb3ee14f16e036cf1566165474a39ef36a43d6c2142bdb99a1a3b66bb87676a3
Size: 150.66 kB