krb5-1.6.1-63.AXS3
エラータID: AXSA:2012-05:01
リリース日:
2012/01/09 Monday - 10:06
題名:
krb5-1.6.1-63.AXS3
影響のあるチャネル:
Asianux Server 3 for x86
Asianux Server 3 for x86_64
Severity:
High
Description:
以下項目について対処しました。<br />
<br />
[Security Fix]<br />
- Kerberos Version 5 Applications の libtelnet/encrypt.c にバッファオーバーフローが存在し,長い暗号化キーによってリモートの攻撃者が任意のコードを実行される脆弱性があります。(CVE-2011-4862)<br />
<br />
一部CVEの翻訳文はJVNからの引用になります。<br />
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2011-4862
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications (aka krb5-appl) 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as exploited in the wild in December 2011.
追加情報:
N/A
ダウンロード:
SRPMS
- krb5-1.6.1-63.AXS3.src.rpm
MD5: 45058796fec724edabf1c4cb1f680c0c
SHA-256: af6d5e47d624c31a42ff684c61028c9239771d6fc13f99fee14b4dea9de223d1
Size: 14.99 MB
Asianux Server 3 for x86
- krb5-devel-1.6.1-63.AXS3.i386.rpm
MD5: 60ed02dc0482ce9bd8d654f35c0b237e
SHA-256: 94780adc07218565af1a501a3f518e239fbf086e51537caccab0b0d8c9763105
Size: 1.85 MB - krb5-libs-1.6.1-63.AXS3.i386.rpm
MD5: 88b01b14824f2143252afe9eec57f80c
SHA-256: bea3d339bb3e4a2fdd29f49803ea79ece73b40ce27963cc26c0c81762f1154e8
Size: 668.73 kB - krb5-server-1.6.1-63.AXS3.i386.rpm
MD5: 3741fd7c13c0f92f1b906e7a28fff808
SHA-256: 0f71ebb789374a6fc3eaac3d5e93733f132861c2452b0ebb00a65c2948132b95
Size: 912.63 kB - krb5-workstation-1.6.1-63.AXS3.i386.rpm
MD5: 19596547e115b401be83fecc38889e16
SHA-256: b7641544530b6e81405ac22c525cfe3d47031eeb35e1f782d7799a55268e81f4
Size: 829.50 kB
Asianux Server 3 for x86_64
- krb5-devel-1.6.1-63.AXS3.x86_64.rpm
MD5: ab5da050360bd42ea7047210025c17ae
SHA-256: 459d0cfddfe5ca0902b69cda1fce9066a8ed62575806a79479e248766b525603
Size: 1.87 MB - krb5-libs-1.6.1-63.AXS3.x86_64.rpm
MD5: d32389f94edaf1533cf64b800a553800
SHA-256: e6809885d61f4be8fb5f50c7d5192b606d90bd20709be38fa40810205464788c
Size: 680.97 kB - krb5-server-1.6.1-63.AXS3.x86_64.rpm
MD5: 38be1c455ccc11d150d787a057a28675
SHA-256: dff54d030bfb4ada9a5051b8758533dbd2dd840724c311ac6a996c9eb8262976
Size: 920.50 kB - krb5-workstation-1.6.1-63.AXS3.x86_64.rpm
MD5: 632b7b65703948aae6043d1604ae720e
SHA-256: acad775dbd4f4fd455c38d9c56b98c1b60c1709e7433ee270b05bbf14d507e50
Size: 855.40 kB