[El-errata] ELSA-2010-0343 Important: Enterprise Linux 5 krb5 security and bug fix update

Errata Announcements for Enterprise Linux el-errata at oss.oracle.com
Fri Apr 9 17:44:00 PDT 2010


Enterprise Linux Security Advisory ELSA-2010-0343

https://rhn.redhat.com/errata/RHSA-2010-0343.html

The following updated rpms for Enterprise Linux 5 have been uploaded to 
the Unbreakable Linux Network:

i386:
krb5-devel-1.6.1-36.el5_5.2.i386.rpm
krb5-libs-1.6.1-36.el5_5.2.i386.rpm
krb5-server-1.6.1-36.el5_5.2.i386.rpm
krb5-workstation-1.6.1-36.el5_5.2.i386.rpm

x86_64:
krb5-devel-1.6.1-36.el5_5.2.i386.rpm
krb5-devel-1.6.1-36.el5_5.2.x86_64.rpm
krb5-libs-1.6.1-36.el5_5.2.i386.rpm
krb5-libs-1.6.1-36.el5_5.2.x86_64.rpm
krb5-server-1.6.1-36.el5_5.2.x86_64.rpm
krb5-workstation-1.6.1-36.el5_5.2.x86_64.rpm

ia64:
krb5-devel-1.6.1-36.el5_5.2.ia64.rpm
krb5-libs-1.6.1-36.el5_5.2.i386.rpm
krb5-libs-1.6.1-36.el5_5.2.ia64.rpm
krb5-server-1.6.1-36.el5_5.2.ia64.rpm
krb5-workstation-1.6.1-36.el5_5.2.ia64.rpm


SRPMS:
http://oss.oracle.com/el5/SRPMS-updates/krb5-1.6.1-36.el5_5.2.src.rpm


Description of changes:

[1.6.1-36.el5_5.3]
- add upstream patch to fix a few use-after-free bugs, including one in
  kadmind (CVE-2010-0629, #578185)

[1.6.1-36.el5_5.2]
- pull changes to libkrb5 to properly handle and chase "off-path" referrals
  back from 1.7 (#574387)





More information about the El-errata mailing list