Ubuntu 2810-1: Kerberos vulnerabilities
Summary
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: krb5-admin-server 1.13.2+dfsg-2ubuntu0.1 krb5-k5tls 1.13.2+dfsg-2ubuntu0.1 krb5-kdc 1.13.2+dfsg-2ubuntu0.1 krb5-kdc-ldap 1.13.2+dfsg-2ubuntu0.1 krb5-otp 1.13.2+dfsg-2ubuntu0.1 krb5-pkinit 1.13.2+dfsg-2ubuntu0.1 krb5-user 1.13.2+dfsg-2ubuntu0.1 libgssapi-krb5-2 1.13.2+dfsg-2ubuntu0.1 libgssrpc4 1.13.2+dfsg-2ubuntu0.1 libk5crypto3 1.13.2+dfsg-2ubuntu0.1 libkadm5clnt-mit9 1.13.2+dfsg-2ubuntu0.1 libkdb5-8 1.13.2+dfsg-2ubuntu0.1 libkrad0 1.13.2+dfsg-2ubuntu0.1 libkrb5-3 1.13.2+dfsg-2ubuntu0.1 libkrb5support0 1.13.2+dfsg-2ubuntu0.1 Ubuntu 15.04: krb5-admin-server 1.12.1+dfsg-18ubuntu0.1 krb5-kdc 1.12.1+dfsg-18ubuntu0.1 krb5-kdc-ldap 1.12.1+dfsg-18ubuntu0.1 krb5-otp 1.12.1+dfsg-18ubuntu0.1 krb5-pkinit 1.12.1+dfsg-18ubuntu0.1 krb5-user 1.12.1+dfsg-18ubuntu0.1 libgssapi-krb5-2 1.12.1+dfsg-18ubuntu0.1 libgssrpc4 1.12.1+dfsg-18ubuntu0.1 libk5crypto3 1.12.1+dfsg-18ubuntu0.1 libkadm5clnt-mit9 1.12.1+dfsg-18ubuntu0.1 libkdb5-7 1.12.1+dfsg-18ubuntu0.1 libkrad0 1.12.1+dfsg-18ubuntu0.1 libkrb5-3 1.12.1+dfsg-18ubuntu0.1 libkrb5support0 1.12.1+dfsg-18ubuntu0.1 Ubuntu 14.04 LTS: krb5-admin-server 1.12+dfsg-2ubuntu5.2 krb5-kdc 1.12+dfsg-2ubuntu5.2 krb5-kdc-ldap 1.12+dfsg-2ubuntu5.2 krb5-otp 1.12+dfsg-2ubuntu5.2 krb5-pkinit 1.12+dfsg-2ubuntu5.2 krb5-user 1.12+dfsg-2ubuntu5.2 libgssapi-krb5-2 1.12+dfsg-2ubuntu5.2 libgssrpc4 1.12+dfsg-2ubuntu5.2 libk5crypto3 1.12+dfsg-2ubuntu5.2 libkadm5clnt-mit9 1.12+dfsg-2ubuntu5.2 libkdb5-7 1.12+dfsg-2ubuntu5.2 libkrad0 1.12+dfsg-2ubuntu5.2 libkrb5-3 1.12+dfsg-2ubuntu5.2 libkrb5support0 1.12+dfsg-2ubuntu5.2 Ubuntu 12.04 LTS: krb5-admin-server 1.10+dfsg~beta1-2ubuntu0.7 krb5-kdc 1.10+dfsg~beta1-2ubuntu0.7 krb5-kdc-ldap 1.10+dfsg~beta1-2ubuntu0.7 krb5-pkinit 1.10+dfsg~beta1-2ubuntu0.7 krb5-user 1.10+dfsg~beta1-2ubuntu0.7 libgssapi-krb5-2 1.10+dfsg~beta1-2ubuntu0.7 libgssrpc4 1.10+dfsg~beta1-2ubuntu0.7 libk5crypto3 1.10+dfsg~beta1-2ubuntu0.7 libkadm5clnt-mit8 1.10+dfsg~beta1-2ubuntu0.7 libkdb5-6 1.10+dfsg~beta1-2ubuntu0.7 libkrb5-3 1.10+dfsg~beta1-2ubuntu0.7 libkrb53 1.10+dfsg~beta1-2ubuntu0.7 libkrb5support0 1.10+dfsg~beta1-2ubuntu0.7 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-2810-1
CVE-2002-2443, CVE-2014-5355, CVE-2015-2694, CVE-2015-2695,
CVE-2015-2696, CVE-2015-2697, CVE-2015-2698
Package Information
https://launchpad.net/ubuntu/+source/krb5/1.13.2+dfsg-2ubuntu0.1 https://launchpad.net/ubuntu/+source/krb5/1.12.1+dfsg-18ubuntu0.1 https://launchpad.net/ubuntu/+source/krb5/1.12+dfsg-2ubuntu5.2 https://launchpad.net/ubuntu/+source/krb5/1.10+dfsg~beta1-2ubuntu0.7