Oval Definition:oval:com.redhat.rhsa:def:20110447
Revision Date:2011-04-14Version:642
Title:RHSA-2011:0447: krb5 security update (Moderate)
Description:Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution Center (KDC).

  • An invalid free flaw was found in the password-changing capability of the MIT Kerberos administration daemon, kadmind. A remote, unauthenticated attacker could use this flaw to cause kadmind to abort via a specially-crafted request. (CVE-2011-0285)

    All krb5 users should upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the updated packages, the kadmind daemon will be restarted automatically.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2011-0285
    CVE-2011-0285
    RHSA-2011:0447
    RHSA-2011:0447-01
    RHSA-2011:0447-01
    Platform(s):Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • krb5-devel is earlier than 0:1.8.2-3.el6_0.7
  • AND krb5-devel is signed with Red Hat redhatrelease2 key
  • krb5-libs is earlier than 0:1.8.2-3.el6_0.7
  • AND krb5-libs is signed with Red Hat redhatrelease2 key
  • krb5-pkinit-openssl is earlier than 0:1.8.2-3.el6_0.7
  • AND krb5-pkinit-openssl is signed with Red Hat redhatrelease2 key
  • krb5-server is earlier than 0:1.8.2-3.el6_0.7
  • AND krb5-server is signed with Red Hat redhatrelease2 key
  • krb5-server-ldap is earlier than 0:1.8.2-3.el6_0.7
  • AND krb5-server-ldap is signed with Red Hat redhatrelease2 key
  • krb5-workstation is earlier than 0:1.8.2-3.el6_0.7
  • AND krb5-workstation is signed with Red Hat redhatrelease2 key
    • BACK