Fedora Essential and Critical Security Patch Updates - Page 825
Find the information you need for your favorite open source distribution .
Fedora Core 4 Update: java-1.4.2-gcj-compat-1.4.2.0-40jpp_31rh.FC4.1
Cope with impending libgcj and eclipse-ecj updates and provide aot-compile-rpm.
Fedora Core 4 Update: pam-0.79-9.1
This update fixes a regression in XAUTHORITY handling and updates auditing support. It requires audit-libs update due to changes in its API.
Fedora Core 4 Update: openssh-4.1p1-3.1
This update rebases openssh to 4.1p1 upstream. This upstream release is only a bug fix release so the changes should be minimal. Also /etc/nologin processing has been changed so it is not done twice.
Fedora Core 4 Update: net-snmp-5.2.1.2-fc4.1
A security vulnerability has been found in Net-SNMP releases that could allow a denial of service attack against Net-SNMP agent"s which have opened a stream based protocol (EG, TCP but not UDP; it should be noted that Net-SNMP does not by default open a TCP port).
Fedora Core 4 Update: krb5-1.4.1-5
A double-free flaw was found in the krb5_recvauth() routine which may be triggered by a remote unauthenticated attacker. Fedora Core 4 contains checks within glibc that detect double-free flaws. Therefore, on Fedora Core 4, successful exploitation of this issue can only lead to a denial of service (KDC crash).
Fedora Core 3 Update: krb5-1.3.6-7
A double-free flaw was found in the krb5_recvauth() routine which may be triggered by a remote unauthenticated attacker. Fedora Core 3 contains checks within glibc that detect double-free flaws. Therefore, on Fedora Core 3, successful exploitation of this issue can only lead to a denial of service (KDC crash).
