---

Home Security

Red Hat Security Advisory: Updated Kerberos 5 packages are now available

By

Date: Thu, 18 May 2000 11:22 -0400
From: bugzilla@redhat.com
To: redhat-watch-list@redhat.com
Subject: [RHSA-2000:025-07] Updated Kerberos 5 packages are now
available for Red Hat Linux.

                   Red Hat, Inc. Security Advisory

Synopsis:          Updated Kerberos 5 packages are now available for Red Hat Linux.
Advisory ID:       RHSA-2000:025-07
Issue date:        2000-05-16
Updated on:        2000-05-18
Product:           Red Hat Linux
Keywords:          N/A
Cross references:  N/A

1. Topic:

Security vulnerabilities have been found in the Kerberos 5
implementation shipped with Red Hat Linux 6.2.

2. Relevant releases/architectures:

Red Hat Linux 6.2 – i386 alpha sparc

3. Problem description:

A number of possible buffer overruns were found in libraries
included in the affected packages. A denial-of-service
vulnerability was also found in the ksu program.

* A remote user may gain unauthorized root access to a machine
running services authenticated with Kerberos 4.

* A remote user may gain unauthorized root access to a machine
running krshd, regardless of whether the program is configured to
accept Kerberos 4 authentication.

* A local user may gain unauthorized root access by exploiting
v4rcp or ksu.

A packaging error was discovered in the original set of updates.
This set of update packages includes no functional differences
compared to the previously-released set.

4. Solution:

For each RPM for your particular architecture, run:

rpm -Fvh [filename]

where filename is the name of the RPM.

5. Bug IDs fixed (http://bugzilla.redhat.com/bugzilla
for more info):

10653 – ‘stat’ unresolved on “libkrb5.so.2.2” load
11496 – security-updated krb5 packages fail dependencies

6. RPMs required:

Red Hat Linux 6.2:

intel:
ftp://ftp.redhat.com/6.2/i386/krb5-configs-1.1.1-16.i386.rpm

ftp://ftp.redhat.com/6.2/i386/krb5-devel-1.1.1-16.i386.rpm

ftp://ftp.redhat.com/6.2/i386/krb5-libs-1.1.1-16.i386.rpm

ftp://ftp.redhat.com/6.2/i386/krb5-server-1.1.1-16.i386.rpm

ftp://ftp.redhat.com/6.2/i386/krb5-workstation-1.1.1-16.i386.rpm

alpha:
ftp://ftp.redhat.com/6.2/alpha/krb5-configs-1.1.1-16.alpha.rpm

ftp://ftp.redhat.com/6.2/alpha/krb5-devel-1.1.1-16.alpha.rpm

ftp://ftp.redhat.com/6.2/alpha/krb5-libs-1.1.1-16.alpha.rpm

ftp://ftp.redhat.com/6.2/alpha/krb5-server-1.1.1-16.alpha.rpm


ftp://ftp.redhat.com/6.2/alpha/krb5-workstation-1.1.1-16.alpha.rpm

sparc:
ftp://ftp.redhat.com/6.2/sparc/krb5-configs-1.1.1-16.sparc.rpm

ftp://ftp.redhat.com/6.2/sparc/krb5-devel-1.1.1-16.sparc.rpm

ftp://ftp.redhat.com/6.2/sparc/krb5-libs-1.1.1-16.sparc.rpm

ftp://ftp.redhat.com/6.2/sparc/krb5-server-1.1.1-16.sparc.rpm


ftp://ftp.redhat.com/6.2/sparc/krb5-workstation-1.1.1-16.sparc.rpm

7. Verification:

MD5 sum                           Package Name

683bda3272d3f2cbcbb8e0a7c0406ccf 6.2/alpha/krb5-configs-1.1.1-16.alpha.rpm
ba5f06e4c645ea8ab1d3bcd4487ebaa6 6.2/alpha/krb5-devel-1.1.1-16.alpha.rpm
77cf98beb23c287fc012cd6dc6521301 6.2/alpha/krb5-libs-1.1.1-16.alpha.rpm
6ad4f37397a234c1d46885c4abc6ba5e 6.2/alpha/krb5-server-1.1.1-16.alpha.rpm
daf0856da5ba8007fa54aebe6b5089f4 6.2/alpha/krb5-workstation-1.1.1-16.alpha.rpm
3612c7bcf0b08dfb721dcc32f31507d0 6.2/i386/krb5-configs-1.1.1-16.i386.rpm
f3c2789283ace967e7690e50227e7f35 6.2/i386/krb5-devel-1.1.1-16.i386.rpm
ea698e0bcf61f8281055a7ff9d9e2615 6.2/i386/krb5-libs-1.1.1-16.i386.rpm
0b176c84d19f4ccc2e0d4e894008c2ba 6.2/i386/krb5-server-1.1.1-16.i386.rpm
91d06f5759da4b0de0d4969e09ceb8e6 6.2/i386/krb5-workstation-1.1.1-16.i386.rpm
221e76df87c09b4d9746246a7746454d 6.2/sparc/krb5-configs-1.1.1-16.sparc.rpm
209e4547f41861fc6d7f505ea6c1bd85 6.2/sparc/krb5-devel-1.1.1-16.sparc.rpm
818d5fe6042250f310cdf2f94f14c3c8 6.2/sparc/krb5-libs-1.1.1-16.sparc.rpm
9acfdfbafc2f34e89296bb34e7750343 6.2/sparc/krb5-server-1.1.1-16.sparc.rpm
aefb875acc83970a5e253895a1611549 6.2/sparc/krb5-workstation-1.1.1-16.sparc.rpm

These packages are GPG signed by Red Hat, Inc. for security. Our
key is available at:
http://www.redhat.com/corp/contact.html

You can verify each package with the following command:
rpm –checksig

If you only wish to verify that each package has not been
corrupted or tampered with, examine only the md5sum with the
following command:
rpm –checksig –nogpg

8. References:

N/A

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis

Must Read

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.