Описание
ELSA-2013-0942: krb5 security update (MODERATE)
[1.10.3-10.3]
- pull up fix for UDP ping-pong flaw in kpasswd service (CVE-2002-2443,
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
krb5-devel
1.10.3-10.el6_4.3
krb5-libs
1.10.3-10.el6_4.3
krb5-pkinit-openssl
1.10.3-10.el6_4.3
krb5-server
1.10.3-10.el6_4.3
krb5-server-ldap
1.10.3-10.el6_4.3
krb5-workstation
1.10.3-10.el6_4.3
Oracle Linux i686
krb5-devel
1.10.3-10.el6_4.3
krb5-libs
1.10.3-10.el6_4.3
krb5-pkinit-openssl
1.10.3-10.el6_4.3
krb5-server
1.10.3-10.el6_4.3
krb5-server-ldap
1.10.3-10.el6_4.3
krb5-workstation
1.10.3-10.el6_4.3
Oracle Linux 5
Oracle Linux ia64
krb5-devel
1.6.1-70.el5_9.2
krb5-libs
1.6.1-70.el5_9.2
krb5-server
1.6.1-70.el5_9.2
krb5-server-ldap
1.6.1-70.el5_9.2
krb5-workstation
1.6.1-70.el5_9.2
Oracle Linux x86_64
krb5-devel
1.6.1-70.el5_9.2
krb5-libs
1.6.1-70.el5_9.2
krb5-server
1.6.1-70.el5_9.2
krb5-server-ldap
1.6.1-70.el5_9.2
krb5-workstation
1.6.1-70.el5_9.2
Oracle Linux i386
krb5-devel
1.6.1-70.el5_9.2
krb5-libs
1.6.1-70.el5_9.2
krb5-server
1.6.1-70.el5_9.2
krb5-server-ldap
1.6.1-70.el5_9.2
krb5-workstation
1.6.1-70.el5_9.2
Связанные CVE
Связанные уязвимости
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) ...
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103.