SciLinux: CVE-2007-3999 krb5 SL5.x i386/x86_64
Summary
Date: Wed, 5 Sep 2007 08:57:59 -0500Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for krb5 on SL5.x i386/x86_64Comments: To: scientific-linux-errata@fnal.govSynopsis: Important: krb5 security updateIssue date: 2007-09-04CVE Names: CVE-2007-3999 CVE-2007-4000Tenable Network Security discovered a stack buffer overflow flaw in the RPClibrary used by kadmind. A remote unauthenticated attacker who can accesskadmind could trigger this flaw and cause kadmind to crash. On Red HatEnterprise Linux 5 it is not possible to exploit this flaw to run arbitrarycode as the overflow is blocked by FORTIFY_SOURCE. (CVE-2007-3999)Garrett Wollman discovered an uninitialized pointer flaw in kadmind. Aremote unauthenticated attacker who can access kadmind could trigger thisflaw and cause kadmind to crash. (CVE-2007-4000)SL 5.x SRPMS: krb5-1.5-28.src.rpm i386: krb5-devel-1.5-28.i386.rpm krb5-libs-1.5-28.i386.rpm krb5-server-1.5-28.i386.rpm krb5-workstation-1.5-28.i386.rpm x86_64: krb5-devel-1.5-28.i386.rpm krb5-devel-1.5-28.x86_64.rpm krb5-libs-1.5-28.i386.rpm krb5-libs-1.5-28.x86_64.rpm krb5-server-1.5-28.x86_64.rpm krb5-workstation-1.5-28.x86_64.rpm-Connie Sieh-Troy Dawson