Oval Definition:	oval:org.mitre.oval:def:23672
Revision Date: 2014-05-26 Version: 15 Title: ELSA-2011:1790: krb5 security update (Moderate) Description: The process_tgs_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS request that triggers an error other than the KRB5_KDB_NOENTRY error. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-1530 ELSA-2011:1790-01 Platform(s): Oracle Linux 6 Product(s): krb5 Definition Synopsis Oracle Linux 6.x AND rpm test krb5-devel is earlier than 0:1.9-22.el6_2.1 OR krb5-server-ldap is earlier than 0:1.9-22.el6_2.1 OR krb5-workstation is earlier than 0:1.9-22.el6_2.1 OR krb5-libs is earlier than 0:1.9-22.el6_2.1 OR krb5-pkinit-openssl is earlier than 0:1.9-22.el6_2.1 OR krb5-server is earlier than 0:1.9-22.el6_2.1 OR krb5 is earlier than 0:1.9-22.el6_2.1
BACK