[El-errata] ELSA-2012-1131 Important: Oracle Linux 6 krb5 security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Tue Jul 31 22:16:47 PDT 2012


Oracle Linux Security Advisory ELSA-2012-1131

https://rhn.redhat.com/errata/RHSA-2012-1131.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
krb5-devel-1.9-33.el6_3.2.i686.rpm
krb5-libs-1.9-33.el6_3.2.i686.rpm
krb5-pkinit-openssl-1.9-33.el6_3.2.i686.rpm
krb5-server-1.9-33.el6_3.2.i686.rpm
krb5-server-ldap-1.9-33.el6_3.2.i686.rpm
krb5-workstation-1.9-33.el6_3.2.i686.rpm

x86_64:
krb5-devel-1.9-33.el6_3.2.i686.rpm
krb5-devel-1.9-33.el6_3.2.x86_64.rpm
krb5-libs-1.9-33.el6_3.2.i686.rpm
krb5-libs-1.9-33.el6_3.2.x86_64.rpm
krb5-pkinit-openssl-1.9-33.el6_3.2.x86_64.rpm
krb5-server-1.9-33.el6_3.2.x86_64.rpm
krb5-server-ldap-1.9-33.el6_3.2.i686.rpm
krb5-server-ldap-1.9-33.el6_3.2.x86_64.rpm
krb5-workstation-1.9-33.el6_3.2.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/krb5-1.9-33.el6_3.2.src.rpm



Description of changes:

[1.9-33.2]
- pull up the patch to correct a possible NULL pointer dereference in
   kadmind (CVE-2012-1013, #827517)

[1.9-33.1]
- add candidate patch from upstream to fix freeing uninitialized pointer in
   the KDC (MITKRB5-SA-2012-001, CVE-2012-1015, #839859)





More information about the El-errata mailing list