[El-errata] ELBA-2014-0359 Oracle Linux 6 krb5 bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Apr 3 12:04:22 PDT 2014


Oracle Linux Bug Fix Advisory ELBA-2014-0359

https://rhn.redhat.com/errata/RHBA-2014-0359.html

The following updated rpms for Oracle Linux 6 have been uploaded to the 
Unbreakable Linux Network:

i386:
krb5-devel-1.10.3-15.el6_5.1.i686.rpm
krb5-libs-1.10.3-15.el6_5.1.i686.rpm
krb5-pkinit-openssl-1.10.3-15.el6_5.1.i686.rpm
krb5-server-1.10.3-15.el6_5.1.i686.rpm
krb5-server-ldap-1.10.3-15.el6_5.1.i686.rpm
krb5-workstation-1.10.3-15.el6_5.1.i686.rpm

x86_64:
krb5-devel-1.10.3-15.el6_5.1.i686.rpm
krb5-devel-1.10.3-15.el6_5.1.x86_64.rpm
krb5-libs-1.10.3-15.el6_5.1.i686.rpm
krb5-libs-1.10.3-15.el6_5.1.x86_64.rpm
krb5-pkinit-openssl-1.10.3-15.el6_5.1.x86_64.rpm
krb5-server-1.10.3-15.el6_5.1.x86_64.rpm
krb5-server-ldap-1.10.3-15.el6_5.1.i686.rpm
krb5-server-ldap-1.10.3-15.el6_5.1.x86_64.rpm
krb5-workstation-1.10.3-15.el6_5.1.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/krb5-1.10.3-15.el6_5.1.src.rpm



Description of changes:

[1.10.3-15.1]
- backport fix for trying all compatible keys when not being strict about
   acceptor names while reading AP-REQs (RT#7883, #1081611)

[1.10.3-15]
- backport fix for not being able to verify the list of transited realms
   in GSS acceptors (RT#7639, #959685)

[1.10.3-14]
- pull fix for keeping track of the message type when parsing FAST 
requests in
   the KDC (RT#7605, #951965)

[1.10.3-13]
- incorporate upstream patch to fix a NULL pointer dereference while 
processing
   certain TGS requests (CVE-2013-1416, #950343)
- incorporate upstream patch to fix a NULL pointer dereference when the 
client
   supplies an otherwise-normal-looking PKINIT request (CVE-2013-1415, 
#917910)
- add patch to avoid dereferencing a NULL pointer in the KDC when handling a
   draft9 PKINIT request (#917910, CVE-2012-1016)

[1.10.3-12]
- pull up fix for UDP ping-pong flaw in kpasswd service (CVE-2002-2443,

[1.10.3-11]
- don't leak the memory used to hold the previous entry when walking a 
keytab
   to figure out which kinds of keys we have (#911147)






More information about the El-errata mailing list