OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[SA13612] Fedora update for krb5

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Wed Dec 22 2004 - 02:52:31 CST

TITLE:
Fedora update for krb5

SECUNIA ADVISORY ID:
SA13612

VERIFY ADVISORY:
http://secunia.com/advisories/13612/

CRITICAL:
Moderately critical

IMPACT:
Privilege escalation, System access

WHERE:
From local network

OPERATING SYSTEM:
Fedora Core 2
http://secunia.com/product/3489/
Fedora Core 3
http://secunia.com/product/4222/

DESCRIPTION:
Fedora has issued an update for krb5. This fixes two vulnerabilities,
which can be exploited by malicious, local users to perform certain
actions on a vulnerable system with escalated privileges and
potentially by malicious users to compromise a vulnerable system.

For more information:
SA12967
SA13592

NOTE: The update for Fedora Core 3 also fixes three older
vulnerabilities:
SA12408

SOLUTION:
Apply updates.

Fedora Core 2:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

bb1c7d3306da401a8162189277ca1cad SRPMS/krb5-1.3.6-1.src.rpm
d825b1f0975f6f6a025eaf4b674a0793
x86_64/krb5-devel-1.3.6-1.x86_64.rpm
b496e0d27c48eaca71e468322a3ca555 x86_64/krb5-libs-1.3.6-1.x86_64.rpm
9c410337f39d59ee8860b32499cdb54b
x86_64/krb5-server-1.3.6-1.x86_64.rpm
a524c1d52a7eca353114db7028c5bbc7
x86_64/krb5-workstation-1.3.6-1.x86_64.rpm
186c7300eca2536d2b84be68c8496ce1
x86_64/debug/krb5-debuginfo-1.3.6-1.x86_64.rpm
16ca27d33cea69c09f58dbe5facc6770 x86_64/krb5-libs-1.3.6-1.i386.rpm
10342208c7139a8813e8258e1df006da i386/krb5-devel-1.3.6-1.i386.rpm
16ca27d33cea69c09f58dbe5facc6770 i386/krb5-libs-1.3.6-1.i386.rpm
90f808b51955d1c63d07ad9819177897 i386/krb5-server-1.3.6-1.i386.rpm
4b2cfb50548f335bfdeca765d9d6312c
i386/krb5-workstation-1.3.6-1.i386.rpm
05dc28d1fb4c0aff6788f921059f1419
i386/debug/krb5-debuginfo-1.3.6-1.i386.rpm

Fedora Core 3:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

620af2cfdc4ac6329926ad39a46fa4a9 SRPMS/krb5-1.3.6-2.src.rpm
53f0d19182e4c3e1f2ad3d0ab023ac1e
x86_64/krb5-devel-1.3.6-2.x86_64.rpm
c002f669da7a6eba997ea83b3f17da57 x86_64/krb5-libs-1.3.6-2.x86_64.rpm
bd80d207a93e61b0cf6877d5e5e11634
x86_64/krb5-server-1.3.6-2.x86_64.rpm
69eb76fca82bbd33049fdd5a7bdd4054
x86_64/krb5-workstation-1.3.6-2.x86_64.rpm
9b91a519f8f7581bf4ff23f884bde437
x86_64/debug/krb5-debuginfo-1.3.6-2.x86_64.rpm
8bb027a8f492b2526a591fbcd2cd2a6d x86_64/krb5-libs-1.3.6-2.i386.rpm
52b6f59f74267da95713cff9c17bced0 i386/krb5-devel-1.3.6-2.i386.rpm
8bb027a8f492b2526a591fbcd2cd2a6d i386/krb5-libs-1.3.6-2.i386.rpm
29ea7f4419753069975fa4cb001a9df3 i386/krb5-server-1.3.6-2.i386.rpm
f90428f6202b73bfda93c794be17386a
i386/krb5-workstation-1.3.6-2.i386.rpm
9a7f84a93c22830e73b359107912db25
i386/debug/krb5-debuginfo-1.3.6-2.i386.rpm

OTHER REFERENCES:
SA12967:
http://secunia.com/advisories/13592/

SA13592:
http://secunia.com/advisories/13592/

SA12408:
http://secunia.com/advisories/12408/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------