What Are You Looking For?

Sign Up
Date:         Tue, 7 Apr 2009 14:37:29 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      FASTBUGS for SL 5.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

The following FASTBUGS have been uploaded to


          i386:
finch-2.5.5-1.el5.i386.rpm
finch-devel-2.5.5-1.el5.i386.rpm
gnome-python2-applet-2.16.0-3.el5.i386.rpm
gnome-python2-desktop-2.16.0-3.el5.i386.rpm
gnome-python2-gnomedesktop-2.16.0-3.el5.i386.rpm
gnome-python2-gnomekeyring-2.16.0-3.el5.i386.rpm
gnome-python2-gnomeprint-2.16.0-3.el5.i386.rpm
gnome-python2-gtksourceview-2.16.0-3.el5.i386.rpm
gnome-python2-libgtop2-2.16.0-3.el5.i386.rpm
gnome-python2-libwnck-2.16.0-3.el5.i386.rpm
gnome-python2-metacity-2.16.0-3.el5.i386.rpm
gnome-python2-nautilus-cd-burner-2.16.0-3.el5.i386.rpm
gnome-python2-rsvg-2.16.0-3.el5.i386.rpm
gnome-python2-totem-2.16.0-3.el5.i386.rpm
iproute-2.6.18-10.el5.i386.rpm
libpurple-2.5.5-1.el5.i386.rpm
libpurple-devel-2.5.5-1.el5.i386.rpm
libpurple-perl-2.5.5-1.el5.i386.rpm
libpurple-tcl-2.5.5-1.el5.i386.rpm
perl-5.8.8-18.el5_3.1.i386.rpm
perl-suidperl-5.8.8-18.el5_3.1.i386.rpm
pidgin-2.5.5-1.el5.i386.rpm
pidgin-devel-2.5.5-1.el5.i386.rpm
pidgin-perl-2.5.5-1.el5.i386.rpm
         x86_64:
finch-2.5.5-1.el5.i386.rpm
finch-2.5.5-1.el5.x86_64.rpm
finch-devel-2.5.5-1.el5.i386.rpm
finch-devel-2.5.5-1.el5.x86_64.rpm
gnome-python2-applet-2.16.0-3.el5.x86_64.rpm
gnome-python2-desktop-2.16.0-3.el5.x86_64.rpm
gnome-python2-gnomedesktop-2.16.0-3.el5.x86_64.rpm
gnome-python2-gnomekeyring-2.16.0-3.el5.x86_64.rpm
gnome-python2-gnomeprint-2.16.0-3.el5.x86_64.rpm
gnome-python2-gtksourceview-2.16.0-3.el5.x86_64.rpm
gnome-python2-libgtop2-2.16.0-3.el5.x86_64.rpm
gnome-python2-libwnck-2.16.0-3.el5.x86_64.rpm
gnome-python2-metacity-2.16.0-3.el5.x86_64.rpm
gnome-python2-nautilus-cd-burner-2.16.0-3.el5.x86_64.rpm
gnome-python2-rsvg-2.16.0-3.el5.x86_64.rpm
gnome-python2-totem-2.16.0-3.el5.x86_64.rpm
iproute-2.6.18-10.el5.x86_64.rpm
libpurple-2.5.5-1.el5.i386.rpm
libpurple-2.5.5-1.el5.x86_64.rpm
libpurple-devel-2.5.5-1.el5.i386.rpm
libpurple-devel-2.5.5-1.el5.x86_64.rpm
libpurple-perl-2.5.5-1.el5.x86_64.rpm
libpurple-tcl-2.5.5-1.el5.x86_64.rpm
perl-5.8.8-18.el5_3.1.x86_64.rpm
perl-suidperl-5.8.8-18.el5_3.1.x86_64.rpm
pidgin-2.5.5-1.el5.i386.rpm
pidgin-2.5.5-1.el5.x86_64.rpm
pidgin-devel-2.5.5-1.el5.i386.rpm
pidgin-devel-2.5.5-1.el5.x86_64.rpm
pidgin-perl-2.5.5-1.el5.x86_64.rpm

-Connie Sieh
-Troy Dawson
Date:         Tue, 7 Apr 2009 14:54:00 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Critical: krb5 on SL3.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Critical: krb5 security update
Issue date:	2009-04-07
CVE Names:	CVE-2009-0846

An input validation flaw was found in the ASN.1 (Abstract Syntax 
Notation One) decoder used by MIT Kerberos. A remote attacker could use 
this flaw to crash a network service using the MIT Kerberos library, 
such as kadmind or krb5kdc, by causing it to dereference or free an 
uninitialized pointer or, possibly, execute arbitrary code with the 
privileges of the user running the service. (CVE-2009-0846)

All running services using the MIT Kerberos libraries must be restarted 
for the update to take effect.

SL 3.0.x

      SRPMS:
krb5-1.2.7-70.src.rpm
      i386:
krb5-devel-1.2.7-70.i386.rpm
krb5-libs-1.2.7-70.i386.rpm
krb5-server-1.2.7-70.i386.rpm
krb5-workstation-1.2.7-70.i386.rpm
      x86_64:
krb5-devel-1.2.7-70.x86_64.rpm
krb5-libs-1.2.7-70.i386.rpm
krb5-libs-1.2.7-70.x86_64.rpm
krb5-server-1.2.7-70.x86_64.rpm
krb5-workstation-1.2.7-70.x86_64.rpm

-Connie Sieh
-Troy Dawson

SciLinux: CVE-2009-0846 Critical: krb5 SL3.x i386/x86_64

Critical: krb5 security update

Summary

Date:         Tue, 7 Apr 2009 14:37:29 -0500Reply-To:     Troy Dawson Sender:       Security Errata for Scientific Linux              From:         Troy Dawson Subject:      FASTBUGS for SL 5.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov"          The following FASTBUGS have been uploaded to          i386:finch-2.5.5-1.el5.i386.rpmfinch-devel-2.5.5-1.el5.i386.rpmgnome-python2-applet-2.16.0-3.el5.i386.rpmgnome-python2-desktop-2.16.0-3.el5.i386.rpmgnome-python2-gnomedesktop-2.16.0-3.el5.i386.rpmgnome-python2-gnomekeyring-2.16.0-3.el5.i386.rpmgnome-python2-gnomeprint-2.16.0-3.el5.i386.rpmgnome-python2-gtksourceview-2.16.0-3.el5.i386.rpmgnome-python2-libgtop2-2.16.0-3.el5.i386.rpmgnome-python2-libwnck-2.16.0-3.el5.i386.rpmgnome-python2-metacity-2.16.0-3.el5.i386.rpmgnome-python2-nautilus-cd-burner-2.16.0-3.el5.i386.rpmgnome-python2-rsvg-2.16.0-3.el5.i386.rpmgnome-python2-totem-2.16.0-3.el5.i386.rpmiproute-2.6.18-10.el5.i386.rpmlibpurple-2.5.5-1.el5.i386.rpmlibpurple-devel-2.5.5-1.el5.i386.rpmlibpurple-perl-2.5.5-1.el5.i386.rpmlibpurple-tcl-2.5.5-1.el5.i386.rpmperl-5.8.8-18.el5_3.1.i386.rpmperl-suidperl-5.8.8-18.el5_3.1.i386.rpmpidgin-2.5.5-1.el5.i386.rpmpidgin-devel-2.5.5-1.el5.i386.rpmpidgin-perl-2.5.5-1.el5.i386.rpm         x86_64:finch-2.5.5-1.el5.i386.rpmfinch-2.5.5-1.el5.x86_64.rpmfinch-devel-2.5.5-1.el5.i386.rpmfinch-devel-2.5.5-1.el5.x86_64.rpmgnome-python2-applet-2.16.0-3.el5.x86_64.rpmgnome-python2-desktop-2.16.0-3.el5.x86_64.rpmgnome-python2-gnomedesktop-2.16.0-3.el5.x86_64.rpmgnome-python2-gnomekeyring-2.16.0-3.el5.x86_64.rpmgnome-python2-gnomeprint-2.16.0-3.el5.x86_64.rpmgnome-python2-gtksourceview-2.16.0-3.el5.x86_64.rpmgnome-python2-libgtop2-2.16.0-3.el5.x86_64.rpmgnome-python2-libwnck-2.16.0-3.el5.x86_64.rpmgnome-python2-metacity-2.16.0-3.el5.x86_64.rpmgnome-python2-nautilus-cd-burner-2.16.0-3.el5.x86_64.rpmgnome-python2-rsvg-2.16.0-3.el5.x86_64.rpmgnome-python2-totem-2.16.0-3.el5.x86_64.rpmiproute-2.6.18-10.el5.x86_64.rpmlibpurple-2.5.5-1.el5.i386.rpmlibpurple-2.5.5-1.el5.x86_64.rpmlibpurple-devel-2.5.5-1.el5.i386.rpmlibpurple-devel-2.5.5-1.el5.x86_64.rpmlibpurple-perl-2.5.5-1.el5.x86_64.rpmlibpurple-tcl-2.5.5-1.el5.x86_64.rpmperl-5.8.8-18.el5_3.1.x86_64.rpmperl-suidperl-5.8.8-18.el5_3.1.x86_64.rpmpidgin-2.5.5-1.el5.i386.rpmpidgin-2.5.5-1.el5.x86_64.rpmpidgin-devel-2.5.5-1.el5.i386.rpmpidgin-devel-2.5.5-1.el5.x86_64.rpmpidgin-perl-2.5.5-1.el5.x86_64.rpm-Connie Sieh-Troy DawsonDate:         Tue, 7 Apr 2009 14:54:00 -0500Reply-To:     Troy Dawson Sender:       Security Errata for Scientific Linux              From:         Troy Dawson Subject:      Security ERRATA Critical: krb5 on SL3.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov"          Synopsis:	Critical: krb5 security updateIssue date:	2009-04-07CVE Names:	CVE-2009-0846An input validation flaw was found in the ASN.1 (Abstract Syntax Notation One) decoder used by MIT Kerberos. A remote attacker could use this flaw to crash a network service using the MIT Kerberos library, such as kadmind or krb5kdc, by causing it to dereference or free an uninitialized pointer or, possibly, execute arbitrary code with the privileges of the user running the service. (CVE-2009-0846)All running services using the MIT Kerberos libraries must be restarted for the update to take effect.SL 3.0.x      SRPMS:krb5-1.2.7-70.src.rpm      i386:krb5-devel-1.2.7-70.i386.rpmkrb5-libs-1.2.7-70.i386.rpmkrb5-server-1.2.7-70.i386.rpmkrb5-workstation-1.2.7-70.i386.rpm      x86_64:krb5-devel-1.2.7-70.x86_64.rpmkrb5-libs-1.2.7-70.i386.rpmkrb5-libs-1.2.7-70.x86_64.rpmkrb5-server-1.2.7-70.x86_64.rpmkrb5-workstation-1.2.7-70.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity

Related News

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

LockBit Ransomware Exploiting Critical Citrix Bleed Vulnerability to Break In

Nov 25, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo