Updated krb5 packages fix security vulnerabilities: Incorrect memory management in the libgssapi_krb5 library might result in denial of service or the execution of arbitrary code (CVE-2014-5352). Incorrect memory management in kadmind’s processing of XDR data might result in denial of service or the execution of arbitrary code (CVE-2014-9421). Incorrect processing of two-component server principals might result in impersonation attacks (CVE-2014-9422). An information leak in the libgssrpc library (CVE-2014-9423).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | krb5 | < 1.11.4-1.4 | krb5-1.11.4-1.4.mga4 |