Skip to navigation

Security Advisory krb5 security update

Advisory: RHSA-2006:0612-8
Type: Security Advisory
Severity: Important
Issued on: 2006-08-08
Last updated on: 2006-08-08
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2006-3083

Details

Updated krb5 packages are now available for Red Hat Enterprise Linux 4 to
correct a privilege escalation security flaw.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Kerberos is a network authentication system which allows clients and
servers to authenticate to each other through use of symmetric encryption
and a trusted third party, the KDC.

A flaw was found where some bundled Kerberos-aware applications would fail
to check the result of the setuid() call. On Linux 2.6 kernels, the
setuid() call can fail if certain user limits are hit. A local attacker
could manipulate their environment in such a way to get the applications to
continue to run as root, potentially leading to an escalation of
privileges. (CVE-2006-3083).

Users are advised to update to these erratum packages which contain a
backported fix to correct this issue.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Desktop (v. 4)

SRPMS:
krb5-1.3.4-33.src.rpm
File outdated by:  RHSA-2011:1851
    MD5: cea37ecb1360d88c2fdc83f5419babc1
 
IA-32:
krb5-devel-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 77b0759d3fcc4545c27f34d4e300cc16
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-server-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f3daae1ee3b0631b863635c375afe72a
krb5-workstation-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f6a4726c5d77d16ea2f0713c92f10bae
 
x86_64:
krb5-devel-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: feada102b3dd0995e10f63e7c53ccf65
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 368e23d9adef4244a67b2e1951d2b74b
krb5-server-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e0d823bbf3a2cd51b3e918ab8d669355
krb5-workstation-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e1b4250df40a8d392f011b2c89f79966
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
krb5-1.3.4-33.src.rpm
File outdated by:  RHSA-2011:1851
    MD5: cea37ecb1360d88c2fdc83f5419babc1
 
IA-32:
krb5-devel-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 77b0759d3fcc4545c27f34d4e300cc16
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-server-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f3daae1ee3b0631b863635c375afe72a
krb5-workstation-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f6a4726c5d77d16ea2f0713c92f10bae
 
IA-64:
krb5-devel-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 5dc4a77a4b3c4492afa7f74e83d9f5d0
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: b15d34edd402823f6b5d1d1d0f013d8d
krb5-server-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: ce76f409b19d6824f5d1fdda67c323ef
krb5-workstation-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 4ad475560c2723d011b6cf0faf8eca86
 
PPC:
krb5-devel-1.3.4-33.ppc.rpm
File outdated by:  RHSA-2011:1851
    MD5: 2f5cceda4ec3dcb5a0fca0829055f512
krb5-libs-1.3.4-33.ppc.rpm
File outdated by:  RHSA-2011:1851
    MD5: de6fdc9b22ed426ba7542018e9174adb
krb5-libs-1.3.4-33.ppc64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 8759e9dd51c3614a5259db73e57a26a3
krb5-server-1.3.4-33.ppc.rpm
File outdated by:  RHSA-2011:1851
    MD5: 55ebf269ef488d8a281ee28fcb450383
krb5-workstation-1.3.4-33.ppc.rpm
File outdated by:  RHSA-2011:1851
    MD5: 4015802b89b7d6b92023a3da7787e30d
 
s390:
krb5-devel-1.3.4-33.s390.rpm
File outdated by:  RHSA-2011:1851
    MD5: 55995e2d6b79c58dbb85ec2af716fe78
krb5-libs-1.3.4-33.s390.rpm
File outdated by:  RHSA-2011:1851
    MD5: 811ab87d0c59091d4a0de6e748086d5e
krb5-server-1.3.4-33.s390.rpm
File outdated by:  RHSA-2011:1851
    MD5: 3ec54f81728a0a9ae22afcb2855ed732
krb5-workstation-1.3.4-33.s390.rpm
File outdated by:  RHSA-2011:1851
    MD5: fe5ee4916e5aa24d499a1f8992d1036d
 
s390x:
krb5-devel-1.3.4-33.s390x.rpm
File outdated by:  RHSA-2011:1851
    MD5: 4883f400df4d8123c70604a430f92647
krb5-libs-1.3.4-33.s390.rpm
File outdated by:  RHSA-2011:1851
    MD5: 811ab87d0c59091d4a0de6e748086d5e
krb5-libs-1.3.4-33.s390x.rpm
File outdated by:  RHSA-2011:1851
    MD5: 1e13d025a766bc5ab50ebe3062586ef9
krb5-server-1.3.4-33.s390x.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7f3303ba3883bf0c5135cd39ed02122c
krb5-workstation-1.3.4-33.s390x.rpm
File outdated by:  RHSA-2011:1851
    MD5: 1441e757a4e8e58ca29e7270a86d28ef
 
x86_64:
krb5-devel-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: feada102b3dd0995e10f63e7c53ccf65
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 368e23d9adef4244a67b2e1951d2b74b
krb5-server-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e0d823bbf3a2cd51b3e918ab8d669355
krb5-workstation-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e1b4250df40a8d392f011b2c89f79966
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
krb5-1.3.4-33.src.rpm
File outdated by:  RHSA-2011:1851
    MD5: cea37ecb1360d88c2fdc83f5419babc1
 
IA-32:
krb5-devel-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 77b0759d3fcc4545c27f34d4e300cc16
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-server-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f3daae1ee3b0631b863635c375afe72a
krb5-workstation-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f6a4726c5d77d16ea2f0713c92f10bae
 
IA-64:
krb5-devel-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 5dc4a77a4b3c4492afa7f74e83d9f5d0
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: b15d34edd402823f6b5d1d1d0f013d8d
krb5-server-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: ce76f409b19d6824f5d1fdda67c323ef
krb5-workstation-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 4ad475560c2723d011b6cf0faf8eca86
 
x86_64:
krb5-devel-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: feada102b3dd0995e10f63e7c53ccf65
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 368e23d9adef4244a67b2e1951d2b74b
krb5-server-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e0d823bbf3a2cd51b3e918ab8d669355
krb5-workstation-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e1b4250df40a8d392f011b2c89f79966
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
krb5-1.3.4-33.src.rpm
File outdated by:  RHSA-2011:1851
    MD5: cea37ecb1360d88c2fdc83f5419babc1
 
IA-32:
krb5-devel-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 77b0759d3fcc4545c27f34d4e300cc16
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-server-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f3daae1ee3b0631b863635c375afe72a
krb5-workstation-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: f6a4726c5d77d16ea2f0713c92f10bae
 
IA-64:
krb5-devel-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 5dc4a77a4b3c4492afa7f74e83d9f5d0
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: b15d34edd402823f6b5d1d1d0f013d8d
krb5-server-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: ce76f409b19d6824f5d1fdda67c323ef
krb5-workstation-1.3.4-33.ia64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 4ad475560c2723d011b6cf0faf8eca86
 
x86_64:
krb5-devel-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: feada102b3dd0995e10f63e7c53ccf65
krb5-libs-1.3.4-33.i386.rpm
File outdated by:  RHSA-2011:1851
    MD5: 7650a2f59eb97b17b141804e28f09d44
krb5-libs-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: 368e23d9adef4244a67b2e1951d2b74b
krb5-server-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e0d823bbf3a2cd51b3e918ab8d669355
krb5-workstation-1.3.4-33.x86_64.rpm
File outdated by:  RHSA-2011:1851
    MD5: e1b4250df40a8d392f011b2c89f79966
 
(The unlinked packages above are only available from the Red Hat Network)

References


Keywords

setuid


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/