[El-errata] ELBA-2014-0359 Oracle Linux 6 krb5 bug fix update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Apr 3 12:04:22 PDT 2014
Oracle Linux Bug Fix Advisory ELBA-2014-0359
https://rhn.redhat.com/errata/RHBA-2014-0359.html
The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:
i386:
krb5-devel-1.10.3-15.el6_5.1.i686.rpm
krb5-libs-1.10.3-15.el6_5.1.i686.rpm
krb5-pkinit-openssl-1.10.3-15.el6_5.1.i686.rpm
krb5-server-1.10.3-15.el6_5.1.i686.rpm
krb5-server-ldap-1.10.3-15.el6_5.1.i686.rpm
krb5-workstation-1.10.3-15.el6_5.1.i686.rpm
x86_64:
krb5-devel-1.10.3-15.el6_5.1.i686.rpm
krb5-devel-1.10.3-15.el6_5.1.x86_64.rpm
krb5-libs-1.10.3-15.el6_5.1.i686.rpm
krb5-libs-1.10.3-15.el6_5.1.x86_64.rpm
krb5-pkinit-openssl-1.10.3-15.el6_5.1.x86_64.rpm
krb5-server-1.10.3-15.el6_5.1.x86_64.rpm
krb5-server-ldap-1.10.3-15.el6_5.1.i686.rpm
krb5-server-ldap-1.10.3-15.el6_5.1.x86_64.rpm
krb5-workstation-1.10.3-15.el6_5.1.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/krb5-1.10.3-15.el6_5.1.src.rpm
Description of changes:
[1.10.3-15.1]
- backport fix for trying all compatible keys when not being strict about
acceptor names while reading AP-REQs (RT#7883, #1081611)
[1.10.3-15]
- backport fix for not being able to verify the list of transited realms
in GSS acceptors (RT#7639, #959685)
[1.10.3-14]
- pull fix for keeping track of the message type when parsing FAST
requests in
the KDC (RT#7605, #951965)
[1.10.3-13]
- incorporate upstream patch to fix a NULL pointer dereference while
processing
certain TGS requests (CVE-2013-1416, #950343)
- incorporate upstream patch to fix a NULL pointer dereference when the
client
supplies an otherwise-normal-looking PKINIT request (CVE-2013-1415,
#917910)
- add patch to avoid dereferencing a NULL pointer in the KDC when handling a
draft9 PKINIT request (#917910, CVE-2012-1016)
[1.10.3-12]
- pull up fix for UDP ping-pong flaw in kpasswd service (CVE-2002-2443,
[1.10.3-11]
- don't leak the memory used to hold the previous entry when walking a
keytab
to figure out which kinds of keys we have (#911147)
More information about the El-errata
mailing list