Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 503
Alerts This Week
Warning Icon 1 503

Critical Red Hat Enterprise Linux 2.1 RHSA-2004:448-01 Issues in krb5

red hat
Calendar Grey August 31, 2004
Dist Redhat Esm H88
Kerberos vulnerability alert: Updated software versions address critical security vulnerabilities in the CentOS platform.
Updated Kerberos (krb5) packages that correct double-free and ASN.1parsing bugs are now available for Red Hat Enterprise Linux.

Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/

5. Bug IDs fixed (http://bugzilla.redhat.com/ for more info):

129680 - Upgrading to krb5-libs 1.2.2-27 can cause undefined symbol __dn_expand

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:

908bd9ee7963203d5c086e25b0849568 krb5-1.2.2-31.src.rpm

i386: f5fc294848750e1186efd792aaca3fa1 krb5-devel-1.2.2-31.i386.rpm 1da2499c2aa50026be1eda1774cb8fc0 krb5-libs-1.2.2-31.i386.rpm 72749007a7033ff2a31dc4ee20a439c7 krb5-server-1.2.2-31.i386.rpm be44496d6d25c3e5c1754ce871b3de49 krb5-workstation-1.2.2-31.i386.rpm

ia64: d81f70e064675a486c9a796fd1ea6297 krb5-devel-1.2.2-31.ia64.rpm bd5eeae1a8d4b97585bbe67b746edb1d krb5-libs-1.2.2-31.ia64.rpm bb30a6820d6c475452458a3cebca55b8 krb5-server-1.2.2-31.ia64.rpm c7b3177d7e82f890ef669196c2ff0f8f krb5-workstation-1.2.2-31.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:

908bd9ee7963203d5c086e25b0849568 krb5-1.2.2-31.src.rpm

ia64: d81f70e064675a486c9a796fd1ea6297 krb5-devel-1.2.2-31.ia64.rpm bd5eeae1a8d4b97585bbe67b746edb1d krb5-libs-1.2.2-31.ia64.rpm bb30a6820d6c475452458a3cebca55b8 krb5-server-1.2.2-31.ia64.rpm c7b3177d7e82f890ef669196c2ff0f8f krb5-workstation-1.2.2-31.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:

908bd9ee7963203d5c086e25b0849568 krb5-1.2.2-31.src.rpm

i386: f5fc294848750e1186efd792aaca3fa1 krb5-devel-1.2.2-31.i386.rpm 1da2499c2aa50026be1eda1774cb8fc0 krb5-libs-1.2.2-31.i386.rpm 72749007a7033ff2a31dc4ee20a439c7 krb5-server-1.2.2-31.i386.rpm be44496d6d25c3e5c1754ce871b3de49 krb5-workstation-1.2.2-31.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:

908bd9ee7963203d5c086e25b0849568 krb5-1.2.2-31.src.rpm

i386: f5fc294848750e1186efd792aaca3fa1 krb5-devel-1.2.2-31.i386.rpm 1da2499c2aa50026be1eda1774cb8fc0 krb5-libs-1.2.2-31.i386.rpm 72749007a7033ff2a31dc4ee20a439c7 krb5-server-1.2.2-31.i386.rpm be44496d6d25c3e5c1754ce871b3de49 krb5-workstation-1.2.2-31.i386.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from


Summary

Package List


Severity
critical
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2004:448-01
Issue date: 2004-08-31
Updated on: 2004-08-31
Product: Red Hat Enterprise Linux
Keywords: krb5 double-free asn.1
Obsoletes: RHSA-2004:236

Topic

Updated Kerberos (krb5) packages that correct double-free and ASN.1parsing bugs are now available for Red Hat Enterprise Linux.

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.