[El-errata] ELSA-2007-0095 Critical: Enterprise Linux 5 krb5 security update
el-errata at oss.oracle.com
el-errata at oss.oracle.com
Tue Jun 26 11:14:50 PDT 2007
Enterprise Linux Security Advisory ELSA-2007-0095
https://rhn.redhat.com/errata/RHSA-2007-0095.html
The following updated rpms for Enterprise Linux 5 have been uploaded to
the Unbreakable Linux Network:
i386:
krb5-devel-1.5-23.i386.rpm
krb5-libs-1.5-23.i386.rpm
krb5-server-1.5-23.i386.rpm
krb5-workstation-1.5-23.i386.rpm
x86_64:
krb5-devel-1.5-23.i386.rpm
krb5-devel-1.5-23.x86_64.rpm
krb5-libs-1.5-23.i386.rpm
krb5-libs-1.5-23.x86_64.rpm
krb5-server-1.5-23.x86_64.rpm
krb5-workstation-1.5-23.x86_64.rpm
SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/krb5-1.5-23.src.rpm
Description of changes:
[1.5-23]
- fix bug ID in changelog
[1.5-22]
- rebuild
[1.5-21]
- add preliminary patch to fix buffer overflow in krb5kdc and kadmind
(#231528, CVE-2007-0957)
- add preliminary patch to fix double-free in kadmind (#231537,
CVE-2007-1216)
[1.5-20]
- temporarily back out %post changes, fix for #143289 for security update
- add preliminary patch to correct unauthorized access via krb5-aware telnet
daemon (#229782, CVE-2007-0956)
[1.5-19]
- refrain from killing any lingering members of our child's process
group when
logging that the child process has exited (Jose Plans, #143289)
[1.5-18]
- make use of install-info more failsafe (Ville Skyttä, #223704)
More information about the El-errata
mailing list