Login
Newsletter
Werbung

Sicherheit: Pufferüberlauf in krb5
Aktuelle Meldungen Distributionen
Name: Pufferüberlauf in krb5
ID: FEDORA-2018-7bc12ca591
Distribution: Fedora
Plattformen: Fedora 27
Datum: So, 29. April 2018, 10:50
Referenzen: https://bugzilla.redhat.com/show_bug.cgi?id=1570910
Applikationen: MIT Kerberos

Originalnachricht

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2018-7bc12ca591
2018-04-29 05:14:52.169686
-------------------------------------------------------------------------------
-

Name : krb5
Product : Fedora 27
Version : 1.15.2
Release : 9.fc27
URL : http://web.mit.edu/kerberos/www/
Summary : The Kerberos network authentication system
Description :
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of sending passwords over the network in unencrypted form.

-------------------------------------------------------------------------------
-
Update Information:

GOTTA GO FAST (ensure we build with openssl, rather than builtin, crypto.
Should see some modest perf benefits, but nothing to write home about, and
it's
all workload dependent anyway.)
-------------------------------------------------------------------------------
-
ChangeLog:

* Mon Apr 23 2018 Robbie Harwood <rharwood@redhat.com> - 1.15.2-9
- Explicitly use openssl rather than builtin crypto
- Resolves: #1570910
* Thu Mar 29 2018 Robbie Harwood <rharwood@redhat.com> - 1.15.2-8
- Continue after KRB5_CC_END in KCM cache iteration
* Tue Feb 13 2018 Robbie Harwood <rharwood@redhat.com> - 1.15.2-7
- Fix flaws in LDAP DN checking
- CVE-2018-5729, CVE-2018-5730
* Mon Feb 12 2018 Robbie Harwood <rharwood@redhat.com> - 1.15.2-6
- Fix leak in previous commit
- Resolves: #1540939
* Mon Jan 29 2018 Robbie Harwood <rharwood@redhat.com> - 1.15.2-5
- Process include directories in alphabetical order
* Tue Oct 24 2017 Robbie Harwood <rharwood@redhat.com> - 1.15.2-4
- Fix CVE-2017-15088 (Buffer overflow in get_matching_data())
* Mon Oct 23 2017 Robbie Harwood <rharwood@redhat.com> - 1.15.2-3
- Drop dependency on python2-pyrad (dead upstream, broken with new python)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1570910 - krb5-libs uses slow crypto implementation
https://bugzilla.redhat.com/show_bug.cgi?id=1570910
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-7bc12ca591' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung