Updated Kerberos 5 packages are now available for Red Hat Linux 6 and 7.
These packages fix a vulnerability in the handling of Kerberos IV ticket
files. Updated pam_krb5 packages are now available for Red Hat Linux 7.
A race condition exists in libkrb4 which would allow a malicious user to
cause kerberized login services to overwrite the contents of any file on
the system. The destroyed file would contain the kerberos credentials of
an unsuspecting user who had attempted to log in using the kerberized login
service being exploited.
Additional precautions taken in Kerberos 5 1.2.2 will cause pam_krb5 to
fail when it attempts to create Kerberos IV ticket files on behalf of
users. An update for the pam_krb5 package is also available which corrects
this.
| Red Hat Linux 6.2 |
|
| alpha: |
ftp://updates.redhat.com/6.2/alpha/krb5-configs-1.1.1-26.alpha.rpm
Missing file |
e57ce788eca9711d182552b0350905d8 |
ftp://updates.redhat.com/6.2/alpha/krb5-devel-1.1.1-26.alpha.rpm
Missing file |
f36bdc4f5835f1e0217dfd700837cdf9 |
ftp://updates.redhat.com/6.2/alpha/krb5-libs-1.1.1-26.alpha.rpm
Missing file |
22dd9ec7c70baea4be95b83fe3cbb2ce |
ftp://updates.redhat.com/6.2/alpha/krb5-server-1.1.1-26.alpha.rpm
Missing file |
224c44e25f70dbc54c5a6d648e4c6313 |
ftp://updates.redhat.com/6.2/alpha/krb5-workstation-1.1.1-26.alpha.rpm
Missing file |
b5ddbc92d431a915446f9d67005971d6 |
| |
| i386: |
ftp://updates.redhat.com/6.2/i386/krb5-configs-1.1.1-26.i386.rpm
Missing file |
545e22aaa62be18e9fbf563cc598d76a |
ftp://updates.redhat.com/6.2/i386/krb5-devel-1.1.1-26.i386.rpm
Missing file |
92428079be93de3fbeb3978fc497ced9 |
ftp://updates.redhat.com/6.2/i386/krb5-libs-1.1.1-26.i386.rpm
Missing file |
c7e015d80d88067e78586b146ec37c9e |
ftp://updates.redhat.com/6.2/i386/krb5-server-1.1.1-26.i386.rpm
Missing file |
7d53d769b76e65ba39a7811ccb25e274 |
ftp://updates.redhat.com/6.2/i386/krb5-workstation-1.1.1-26.i386.rpm
Missing file |
cef0175a7b3ef6ef94cb3e04b6a86e67 |
| |
| sparc: |
ftp://updates.redhat.com/6.2/sparc/krb5-configs-1.1.1-26.sparc.rpm
Missing file |
1e06847c54890ed7bcb282f2fa4fab19 |
ftp://updates.redhat.com/6.2/sparc/krb5-devel-1.1.1-26.sparc.rpm
Missing file |
5da36dc1c30528be46a30fb759f5163a |
ftp://updates.redhat.com/6.2/sparc/krb5-libs-1.1.1-26.sparc.rpm
Missing file |
b5999a74da573b493a4080fa37858943 |
ftp://updates.redhat.com/6.2/sparc/krb5-server-1.1.1-26.sparc.rpm
Missing file |
a1b6fbe0c70f481aa95aee59f53d7081 |
ftp://updates.redhat.com/6.2/sparc/krb5-workstation-1.1.1-26.sparc.rpm
Missing file |
4d98e8df011616e0869bdfcca9c0442f |
| |
| Red Hat Linux 7.0 |
|
| alpha: |
ftp://updates.redhat.com/7.0/alpha/krb5-devel-1.2.2-3.alpha.rpm
Missing file |
f692e70599181623d7c709b4eeea949b |
ftp://updates.redhat.com/7.0/alpha/krb5-libs-1.2.2-3.alpha.rpm
Missing file |
a1fa2ae040c8cc7dc26acdb6bc05a494 |
ftp://updates.redhat.com/7.0/alpha/krb5-server-1.2.2-3.alpha.rpm
Missing file |
711e54bf1f4d6af2507fc7f0640cfdbc |
ftp://updates.redhat.com/7.0/alpha/krb5-workstation-1.2.2-3.alpha.rpm
Missing file |
1b1cc01a728807494640d178db7f8b66 |
ftp://updates.redhat.com/7.0/alpha/pam_krb5-1.29-1.alpha.rpm
Missing file |
78374857b86d974ef373165c94dca18f |
| |
| i386: |
ftp://updates.redhat.com/7.0/i386/krb5-devel-1.2.2-3.i386.rpm
Missing file |
e973b9b830d31f0bdd27b3cf703486fd |
ftp://updates.redhat.com/7.0/i386/krb5-libs-1.2.2-3.i386.rpm
Missing file |
56f6429dc0e346ebdc3997c1a84d4a34 |
ftp://updates.redhat.com/7.0/i386/krb5-server-1.2.2-3.i386.rpm
Missing file |
1e88d30acf76d26a2a80affd8f3cf444 |
ftp://updates.redhat.com/7.0/i386/krb5-workstation-1.2.2-3.i386.rpm
Missing file |
9605d6cb0049f7b68a94d44155dd470e |
ftp://updates.redhat.com/7.0/i386/pam_krb5-1.29-1.i386.rpm
Missing file |
fbf60c1b273d86c0388be4b1921fbe37 |
| |
Updated Kerberos 5 and pam_krb5 packages available