krb5-1.10.3-10.AXS4.3
エラータID: AXSA:2013-477:03
リリース日:
2013/06/17 Monday - 14:00
題名:
krb5-1.10.3-10.AXS4.3
影響のあるチャネル:
Asianux Server 4 for x86
Asianux Server 4 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- krb5 の kadmind の kpasswd サービスの schpw.c はレスポンスを送信する前に UDP パケットを適切に検証しておらず,偽造されたパケットによって,リモートの攻撃者がサービス拒否 (CPU と帯域幅の消費) を引き起こす脆弱性があります。
なおこの脆弱性は CVE-1999-0103 と関連する問題です。(CVE-2002-2443)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2002-2443
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.
追加情報:
N/A
ダウンロード:
SRPMS
- krb5-1.10.3-10.AXS4.3.src.rpm
MD5: 9b54bd723cb26e1418ebf032ea84bd54
SHA-256: 77127b1fcfbcd479f4e04232ffddc465aff52bc949754142e36de5f38663605f
Size: 11.48 MB
Asianux Server 4 for x86
- krb5-devel-1.10.3-10.AXS4.3.i686.rpm
MD5: 7e362d2d1e420b51b128b101d79e3755
SHA-256: 577679dbbd27aeeb7b0c6ccc4b9c7071717d047c0115b76d68260275e59df412
Size: 492.52 kB - krb5-libs-1.10.3-10.AXS4.3.i686.rpm
MD5: 9cc92297b5508f2d13360b9384e3dcd6
SHA-256: 73d78b9e7d2e82da96778419322215fc0e9dcf755866f7ff3d4b2a99d9160983
Size: 767.96 kB - krb5-pkinit-openssl-1.10.3-10.AXS4.3.i686.rpm
MD5: ed90a8be3b3070e5821039fa9992ee24
SHA-256: e9916b08dbbe1b6220507aa3ed8431432573ba60fd2801d6101a1c6aaa4c1ac7
Size: 116.76 kB - krb5-server-1.10.3-10.AXS4.3.i686.rpm
MD5: 12be4ef0161afa17f89dc0d3234e8c7a
SHA-256: 87911f7f48cd1c72fd6d56f2cc66e4896ee2b464a7b14bc4d37b845a49083757
Size: 1.98 MB - krb5-server-ldap-1.10.3-10.AXS4.3.i686.rpm
MD5: c9f1cf03fe89ff0e8b886f566d61a002
SHA-256: 7f4ff1b82a704711a691e3da86d24d22f8b50e419a46fb36709dacedad4fe9c4
Size: 150.78 kB - krb5-workstation-1.10.3-10.AXS4.3.i686.rpm
MD5: 34c4a93201a2c72c84c6b6ce212e6e4b
SHA-256: 43670c4f28cccdcdc11c36b50acd21ff2e591feafc83168e1dae1419cbb80411
Size: 801.11 kB
Asianux Server 4 for x86_64
- krb5-devel-1.10.3-10.AXS4.3.x86_64.rpm
MD5: 34bbdd62cffa3ad822d8f919a6063491
SHA-256: 712910bee1ff336fc37f3c18b348b4bb8290c2d6d51498ca939ff9da63d103db
Size: 493.23 kB - krb5-libs-1.10.3-10.AXS4.3.x86_64.rpm
MD5: bb1aa52c93fb87ce72a39450640388af
SHA-256: 4df22ceae7b9f868007d72afaaa5a346b7a555c11e949a6f2df7bd7cfef245f6
Size: 759.27 kB - krb5-pkinit-openssl-1.10.3-10.AXS4.3.x86_64.rpm
MD5: 9bc4617d994e1ae10222038bdeb5ad59
SHA-256: 570043e84199ce10036751654546db8b891d619a95b8ab356eea07291eedf104
Size: 116.57 kB - krb5-server-1.10.3-10.AXS4.3.x86_64.rpm
MD5: 1fdce8f18b9b84996a4323f39b552267
SHA-256: e0dce70f1a07c21105aaaf8f1d7906ec33a5a920d49637877b07be0c058d6c88
Size: 1.98 MB - krb5-server-ldap-1.10.3-10.AXS4.3.x86_64.rpm
MD5: e938a1c90a3deacf23ffdaf37c1bc092
SHA-256: ec7a6ba3ac577446e8f8bfe0d1df1d061071e947c802293ba3d03f1dc7649c30
Size: 150.70 kB - krb5-workstation-1.10.3-10.AXS4.3.x86_64.rpm
MD5: 97e3673641846dad9dcc37f4d74d4276
SHA-256: cb180830d2718ad36436a91602ea77e6489ec9df8d8a0a77d9ae222c0fb64660
Size: 803.59 kB - krb5-devel-1.10.3-10.AXS4.3.i686.rpm
MD5: 7e362d2d1e420b51b128b101d79e3755
SHA-256: 577679dbbd27aeeb7b0c6ccc4b9c7071717d047c0115b76d68260275e59df412
Size: 492.52 kB - krb5-libs-1.10.3-10.AXS4.3.i686.rpm
MD5: 9cc92297b5508f2d13360b9384e3dcd6
SHA-256: 73d78b9e7d2e82da96778419322215fc0e9dcf755866f7ff3d4b2a99d9160983
Size: 767.96 kB - krb5-server-ldap-1.10.3-10.AXS4.3.i686.rpm
MD5: c9f1cf03fe89ff0e8b886f566d61a002
SHA-256: 7f4ff1b82a704711a691e3da86d24d22f8b50e419a46fb36709dacedad4fe9c4
Size: 150.78 kB