- Issued:
- 2005-03-30
- Updated:
- 2005-03-30
RHSA-2005:330 - Security Advisory
Synopsis
krb5 security update
Type/Severity
Security Advisory: Important
Topic
Updated krb5 packages which fix two buffer overflow vulnerabilities in the
included Kerberos-aware telnet client are now available.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Description
Kerberos is a networked authentication system which uses a trusted third
party (a KDC) to authenticate clients and servers to each other.
The krb5-workstation package includes a Kerberos-aware telnet client.
Two buffer overflow flaws were discovered in the way the telnet client
handles messages from a server. An attacker may be able to execute
arbitrary code on a victim's machine if the victim can be tricked into
connecting to a malicious telnet server. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the names CAN-2005-0468 and
CAN-2005-0469 to these issues.
Users of krb5 should update to these erratum packages which contain a
backported patch to correct this issue.
Red Hat would like to thank iDEFENSE for their responsible disclosure of
this issue.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux Server 3 x86_64
- Red Hat Enterprise Linux Server 3 ia64
- Red Hat Enterprise Linux Server 3 i386
- Red Hat Enterprise Linux Server 2 ia64
- Red Hat Enterprise Linux Server 2 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Workstation 3 x86_64
- Red Hat Enterprise Linux Workstation 3 ia64
- Red Hat Enterprise Linux Workstation 3 i386
- Red Hat Enterprise Linux Workstation 2 ia64
- Red Hat Enterprise Linux Workstation 2 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux Desktop 3 x86_64
- Red Hat Enterprise Linux Desktop 3 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for IBM z Systems 3 s390x
- Red Hat Enterprise Linux for IBM z Systems 3 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
- Red Hat Enterprise Linux for Power, big endian 3 ppc
Fixes
- BZ - 151267 - CAN-2005-0469 Multiple Telnet Client issues (CAN-2005-0468)
CVEs
References
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 4
| SRPM | |
|---|---|
| x86_64 | |
| krb5-devel-1.3.4-12.x86_64.rpm | SHA-256: 6a07e8abb38d934144a20a1f309280a506e2a7d0fc0410238891f1c32cf76348 |
| krb5-devel-1.3.4-12.x86_64.rpm | SHA-256: 6a07e8abb38d934144a20a1f309280a506e2a7d0fc0410238891f1c32cf76348 |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.x86_64.rpm | SHA-256: 0b0b88b4d173405111b1b01971ad3e1cdfcfc9be9acc9183d9c3e0de5dbbbba3 |
| krb5-libs-1.3.4-12.x86_64.rpm | SHA-256: 0b0b88b4d173405111b1b01971ad3e1cdfcfc9be9acc9183d9c3e0de5dbbbba3 |
| krb5-server-1.3.4-12.x86_64.rpm | SHA-256: b853e3cd767e0d3658715030eee1e4f21ed7d9f659d80a982dc615cbbd843909 |
| krb5-server-1.3.4-12.x86_64.rpm | SHA-256: b853e3cd767e0d3658715030eee1e4f21ed7d9f659d80a982dc615cbbd843909 |
| krb5-workstation-1.3.4-12.x86_64.rpm | SHA-256: 5e05a41385703032cfe40e448b01a3b472b0e7bfd14858a4d164d449d63d75e3 |
| krb5-workstation-1.3.4-12.x86_64.rpm | SHA-256: 5e05a41385703032cfe40e448b01a3b472b0e7bfd14858a4d164d449d63d75e3 |
| ia64 | |
| krb5-devel-1.3.4-12.ia64.rpm | SHA-256: 685613f0268514dc8aac894d025cf881b7cf32307f277be2e2badf6adc9a59e5 |
| krb5-devel-1.3.4-12.ia64.rpm | SHA-256: 685613f0268514dc8aac894d025cf881b7cf32307f277be2e2badf6adc9a59e5 |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.ia64.rpm | SHA-256: a3027dcf18267999b5d1fd0220cebb0a880855036bac5eb3f16ae664bc2ac081 |
| krb5-libs-1.3.4-12.ia64.rpm | SHA-256: a3027dcf18267999b5d1fd0220cebb0a880855036bac5eb3f16ae664bc2ac081 |
| krb5-server-1.3.4-12.ia64.rpm | SHA-256: 60d6d5990e4623bc65cead4ac6677a6269e7bab40efe3ec1ec5d6bdbaa921833 |
| krb5-server-1.3.4-12.ia64.rpm | SHA-256: 60d6d5990e4623bc65cead4ac6677a6269e7bab40efe3ec1ec5d6bdbaa921833 |
| krb5-workstation-1.3.4-12.ia64.rpm | SHA-256: 9fb42c4a2a1d96be7557016379679dcc64006157afbeaabfaf82199bacae8e79 |
| krb5-workstation-1.3.4-12.ia64.rpm | SHA-256: 9fb42c4a2a1d96be7557016379679dcc64006157afbeaabfaf82199bacae8e79 |
| i386 | |
| krb5-devel-1.3.4-12.i386.rpm | SHA-256: caf0af9ca6c120f38714418b6f7a74943a1659ad65f7e0f5b7508ad5b0e23e6f |
| krb5-devel-1.3.4-12.i386.rpm | SHA-256: caf0af9ca6c120f38714418b6f7a74943a1659ad65f7e0f5b7508ad5b0e23e6f |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-server-1.3.4-12.i386.rpm | SHA-256: 7d077352fce7715ab8a0aae79b328ebb7b0401c961ab8273bd0405641c56efe7 |
| krb5-server-1.3.4-12.i386.rpm | SHA-256: 7d077352fce7715ab8a0aae79b328ebb7b0401c961ab8273bd0405641c56efe7 |
| krb5-workstation-1.3.4-12.i386.rpm | SHA-256: 979b66f55b1b6c6786266eae48f2ebcbb63ff2ddd0d7615cb0f48cb3e06781e9 |
| krb5-workstation-1.3.4-12.i386.rpm | SHA-256: 979b66f55b1b6c6786266eae48f2ebcbb63ff2ddd0d7615cb0f48cb3e06781e9 |
Red Hat Enterprise Linux Workstation 4
| SRPM | |
|---|---|
| x86_64 | |
| krb5-devel-1.3.4-12.x86_64.rpm | SHA-256: 6a07e8abb38d934144a20a1f309280a506e2a7d0fc0410238891f1c32cf76348 |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.x86_64.rpm | SHA-256: 0b0b88b4d173405111b1b01971ad3e1cdfcfc9be9acc9183d9c3e0de5dbbbba3 |
| krb5-server-1.3.4-12.x86_64.rpm | SHA-256: b853e3cd767e0d3658715030eee1e4f21ed7d9f659d80a982dc615cbbd843909 |
| krb5-workstation-1.3.4-12.x86_64.rpm | SHA-256: 5e05a41385703032cfe40e448b01a3b472b0e7bfd14858a4d164d449d63d75e3 |
| ia64 | |
| krb5-devel-1.3.4-12.ia64.rpm | SHA-256: 685613f0268514dc8aac894d025cf881b7cf32307f277be2e2badf6adc9a59e5 |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.ia64.rpm | SHA-256: a3027dcf18267999b5d1fd0220cebb0a880855036bac5eb3f16ae664bc2ac081 |
| krb5-server-1.3.4-12.ia64.rpm | SHA-256: 60d6d5990e4623bc65cead4ac6677a6269e7bab40efe3ec1ec5d6bdbaa921833 |
| krb5-workstation-1.3.4-12.ia64.rpm | SHA-256: 9fb42c4a2a1d96be7557016379679dcc64006157afbeaabfaf82199bacae8e79 |
| i386 | |
| krb5-devel-1.3.4-12.i386.rpm | SHA-256: caf0af9ca6c120f38714418b6f7a74943a1659ad65f7e0f5b7508ad5b0e23e6f |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-server-1.3.4-12.i386.rpm | SHA-256: 7d077352fce7715ab8a0aae79b328ebb7b0401c961ab8273bd0405641c56efe7 |
| krb5-workstation-1.3.4-12.i386.rpm | SHA-256: 979b66f55b1b6c6786266eae48f2ebcbb63ff2ddd0d7615cb0f48cb3e06781e9 |
Red Hat Enterprise Linux Desktop 4
| SRPM | |
|---|---|
| x86_64 | |
| krb5-devel-1.3.4-12.x86_64.rpm | SHA-256: 6a07e8abb38d934144a20a1f309280a506e2a7d0fc0410238891f1c32cf76348 |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-libs-1.3.4-12.x86_64.rpm | SHA-256: 0b0b88b4d173405111b1b01971ad3e1cdfcfc9be9acc9183d9c3e0de5dbbbba3 |
| krb5-server-1.3.4-12.x86_64.rpm | SHA-256: b853e3cd767e0d3658715030eee1e4f21ed7d9f659d80a982dc615cbbd843909 |
| krb5-workstation-1.3.4-12.x86_64.rpm | SHA-256: 5e05a41385703032cfe40e448b01a3b472b0e7bfd14858a4d164d449d63d75e3 |
| i386 | |
| krb5-devel-1.3.4-12.i386.rpm | SHA-256: caf0af9ca6c120f38714418b6f7a74943a1659ad65f7e0f5b7508ad5b0e23e6f |
| krb5-libs-1.3.4-12.i386.rpm | SHA-256: f554e159767d3dc3fb4a9677a5b3873155f6587ac38d793e428c05277f1c8b6e |
| krb5-server-1.3.4-12.i386.rpm | SHA-256: 7d077352fce7715ab8a0aae79b328ebb7b0401c961ab8273bd0405641c56efe7 |
| krb5-workstation-1.3.4-12.i386.rpm | SHA-256: 979b66f55b1b6c6786266eae48f2ebcbb63ff2ddd0d7615cb0f48cb3e06781e9 |
Red Hat Enterprise Linux for IBM z Systems 4
| SRPM | |
|---|---|
| s390x | |
| krb5-devel-1.3.4-12.s390x.rpm | SHA-256: 0e384caccf5d46865385ad5530e6c4de922cabe049fc3ee18007cdc3af853d1f |
| krb5-libs-1.3.4-12.s390.rpm | SHA-256: 10d1e911f4aee196967d79917718b5a77209e47516a47b68c7aab01d0b03f1cb |
| krb5-libs-1.3.4-12.s390x.rpm | SHA-256: 97d03a3ce1ef4fbfbf0b923832b6185d9ad1c522a8f2c05c71723eba46de6007 |
| krb5-server-1.3.4-12.s390x.rpm | SHA-256: 4b953b7d46618b5ab6bf6a48fc7cf3142c79f6af58feae073854652272114b2c |
| krb5-workstation-1.3.4-12.s390x.rpm | SHA-256: 9d0d9c82ad94f4c820329981adefbf39e1817049d1468b8d2d1a03ffc33da503 |
| s390 | |
| krb5-devel-1.3.4-12.s390.rpm | SHA-256: 16e6a6994c09359e316d33849ed228ebff1e3aac8fed384959e98628690e8988 |
| krb5-libs-1.3.4-12.s390.rpm | SHA-256: 10d1e911f4aee196967d79917718b5a77209e47516a47b68c7aab01d0b03f1cb |
| krb5-server-1.3.4-12.s390.rpm | SHA-256: 450b403770cc78f2bc1bdc55b75ffd28ea466f04237895cb7422b24a062030ee |
| krb5-workstation-1.3.4-12.s390.rpm | SHA-256: 9ed7b75fddcb014511feea402a281c74b12b270373a83f818fed4c8021127823 |
Red Hat Enterprise Linux for Power, big endian 4
| SRPM | |
|---|---|
| ppc | |
| krb5-devel-1.3.4-12.ppc.rpm | SHA-256: 85f19928c819b10315608d673980a6eb4b1bc746b178b191eb0c7a84b8a938c7 |
| krb5-libs-1.3.4-12.ppc.rpm | SHA-256: 46d4a50ac4344417013138ea1ba22297c722aa2fe1528fd5b9855e09898f0d52 |
| krb5-libs-1.3.4-12.ppc64.rpm | SHA-256: 15c55274dcd442f2b18e418413603f799a3af6800ec8a226914d9a58e9c7aff1 |
| krb5-server-1.3.4-12.ppc.rpm | SHA-256: 112be08e4987a5a18d4f333fe94e7c436a3fe97a4b895bc648d5614ef2609905 |
| krb5-workstation-1.3.4-12.ppc.rpm | SHA-256: 2a3b2e663adcc319f954ccbb96bd1ad3a15f52db9b8fb9a11593fdbb019b31cd |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.