krb5-1.6.1-31AXS3.3
エラータID: AXSA:2009-41:01
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 server. If you are installing a Kerberos 5 server, you need to install this package.
Fixed bugs:
CVE-2009-0844
The get_input_token function in the SPNEGO implementation in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote attackers to cause a denial of service (daemon crash) and possibly obtain sensitive information via a crafted length value that triggers a buffer over-read.
CVE-2009-0845
The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.6.3, when SPNEGO is used, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via invalid ContextFlags data in the reqFlags field in a negTokenInit token.
CVE-2009-0846
The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 (aka krb5) before 1.6.4 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors involving an invalid DER encoding that triggers a free of an uninitialized pointer.
Update packages
The get_input_token function in the SPNEGO implementation in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote attackers to cause a denial of service (daemon crash) and possibly obtain sensitive information via a crafted length value that triggers a buffer over-read.
The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3, when SPNEGO is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via invalid ContextFlags data in the reqFlags field in a negTokenInit token.
The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 (aka krb5) before 1.6.4 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors involving an invalid DER encoding that triggers a free of an uninitialized pointer.
N/A
SRPMS
- krb5-1.6.1-31AXS3.3.src.rpm
MD5: 44017e94f0eab7a1402a342c821833bf
SHA-256: c6f5cbaf654cd7d9a0b3fb9d0f3f483a946b52a6102238c1fbdc8c78b563ef33
Size: 14.97 MB
Asianux Server 3 for x86
- krb5-devel-1.6.1-31AXS3.3.i386.rpm
MD5: 496b8f126b408fce057abf4bce0ce84b
SHA-256: 29babc5b162dfe401422f82755cd6e9f65e4e6ef60fc7b8a89b4281b1d206d9b
Size: 1.86 MB - krb5-libs-1.6.1-31AXS3.3.i386.rpm
MD5: 4e1b9d5384e56668e7a3b0ad1a13d9d8
SHA-256: e4e809f1d13f6d82951623a3c4362203dff1d93fcbd5db84e167fe63176122f4
Size: 661.33 kB - krb5-server-1.6.1-31AXS3.3.i386.rpm
MD5: 96bb4459af2cba32f1b377e7e8119072
SHA-256: 8115918ef076a49056ef35d378b55a72f4155219d77e575e10477874b56e16fc
Size: 905.51 kB - krb5-workstation-1.6.1-31AXS3.3.i386.rpm
MD5: 2c9a1ab1f61fe744ed5216b8effb161f
SHA-256: 7860899bf35fb6bbad2a0f56f54be861349f06c1dfc50d7e5b6bcfc54684d7b1
Size: 824.45 kB
Asianux Server 3 for x86_64
- krb5-devel-1.6.1-31AXS3.3.x86_64.rpm
MD5: 7684c0634d05e95d8f3b09030a2aa112
SHA-256: 71626dde62e5bd5a37a6884fa7400464e3a874079fee44d739fee42aa16b9728
Size: 1.88 MB - krb5-libs-1.6.1-31AXS3.3.x86_64.rpm
MD5: 07a4940208e0f26d44c76aa0061a14f0
SHA-256: 83a7664f5978a6c97477d74e1683e922880075a10f6c54fecd1de219e8621cd8
Size: 671.91 kB - krb5-server-1.6.1-31AXS3.3.x86_64.rpm
MD5: b1d8d27a7b3801d7a393d46ab1ea7843
SHA-256: 04362bf56d62649f40ccffe048616a5e79747bacb67a270db14f71d2d904d751
Size: 914.43 kB - krb5-workstation-1.6.1-31AXS3.3.x86_64.rpm
MD5: 726e36bb409bd5fe29d83d8660e9cfce
SHA-256: c886daa2a174d7c1f2b239c987a10e908e79f7b253cf404fd08d3d69ddebd9ed
Size: 849.70 kB
日本語