Oval Definition:	oval:org.mitre.oval:def:22167
Revision Date: 2014-02-24 Version: 11 Title: RHSA-2011:1790: krb5 security update (Moderate) Description: The process_tgs_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS request that triggers an error other than the KRB5_KDB_NOENTRY error. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2011:1790 CVE-2011-1530 RHSA-2011:1790-01 Platform(s): CentOS Linux 6 Red Hat Enterprise Linux 6 Product(s): krb5 Definition Synopsis Redhat 6 or Centos 6 release The operating system installed on the system is Red Hat Enterprise Linux 6 OR The operating system installed on the system is CentOS Linux 6.x AND Packages section krb5-devel is earlier than 0:1.9-22.el6_2.1 OR krb5-server-ldap is earlier than 0:1.9-22.el6_2.1 OR krb5-workstation is earlier than 0:1.9-22.el6_2.1 OR krb5-libs is earlier than 0:1.9-22.el6_2.1 OR krb5-pkinit-openssl is earlier than 0:1.9-22.el6_2.1 OR krb5-server is earlier than 0:1.9-22.el6_2.1 OR krb5 is earlier than 0:1.9-22.el6_2.1
BACK