Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 493
Alerts This Week
Warning Icon 1 493

Fedora 25: Heimdal 7.4.0 Critical Update: Metadata Exposure Risk

fedora
Calendar Grey July 23, 2017
Dist Fedora Esm H88
Important heimdal security patch releases for Fedora to resolve metadata leakage vulnerabilities. Update using dnf to ensure security.
Update to 7.4.0 GA release (CVE-2017-11103)

Summary

Kerberos 5 is a network authentication and single sign-on system.

Heimdal is a free Kerberos 5 implementation without export restrictions

written from the spec (rfc1510 and successors) including advanced features

like thread safety, IPv6, master-slave replication of Kerberos Key

Distribution Center server and support for ticket delegation (S4U2Self,

S4U2Proxy).

This package can coexist with MIT Kerberos 5 packages. Hesiod is disabled

by default since it is deemed too big a security risk by the packager.

Update to 7.4.0 GA release (CVE-2017-11103)

[ 1 ] Bug #1469998 - CVE-2017-11103 heimdal: krb5: Metadata taken from the unauthenticated plaintext [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1469998

su -c 'dnf upgrade heimdal' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 25
Version: 7.4.0
Release: 1.fc25
Summary: A Kerberos 5 implementation without export restrictions

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.