Fedora 7 : krb5-1.6.1-9.fc7 (2008-2637)

This update incorporates fixes included in MITKRB5-SA-2008-001 use of uninitialized pointer / double-free in the KDC when v4 compatibility is enabled and MITKRB5-SA-2008-002 incorrect handling of high-numbered descriptors in the RPC library. This update also incorporates less-critical fixes for a...

MIT Kerberos 5: Multiple vulnerabilities

Background MIT Kerberos 5 is a suite of applications that implement the Kerberos network protocol. kadmind is the MIT Kerberos 5 administration daemon, KDC is the Key Distribution Center. Description Two vulnerabilities were found in the Kerberos 4 support in KDC: A global variable is not set for...

CentOS 4 : krb5 (CESA-2008:0180)

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers to authentica...

krb5 security update

CentOS Errata and Security Advisory CESA-2008:0180 Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication...

krb5 security update

CentOS Errata and Security Advisory CESA-2008:0164 Updated krb5 packages that resolve several issues and fix multiple bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network...

RHEL 5 : krb5 (RHSA-2008:0164)

Updated krb5 packages that resolve several issues and fix multiple bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and serve...

RHEL 4 : krb5 (RHSA-2008:0180)

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers to authentica...

krb5: use-after-free in gssapi lib

Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...

Critical: Red Hat Security Advisory: krb5 security and bugfix update

Updated krb5 packages that resolve several issues and fix multiple bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and serve...

krb5: double free in gssapi lib

Double free vulnerability in the gsskrb5intmakesealtokenv3 function in lib/gssapi/krb5/k5sealv3.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors...

krb5: double free in gssapi lib

Double free vulnerability in the gsskrb5intmakesealtokenv3 function in lib/gssapi/krb5/k5sealv3.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors...

Critical: Red Hat Security Advisory: krb5 security update

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers to authentica...

openSUSE 10 Security Update : novell-ipsec-tools (novell-ipsec-tools-4655)

This update fixes a security problem in novell-ipsec-tools : CVE-2007-1841: Fix a DoS in isakmpinforecv and also a non-security bug with a crash in GSSAPI. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

Debian Security Advisory DSA 568-1 (cyrus-sasl-mit)

The remote host is missing an update to cyrus-sasl-mit announced via advisory DSA 568-1. OpenVAS Vulnerability Test $Id: deb5681.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 568-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

SuSE 10 Security Update : Recommended update for novell-ipsec-tools (ZYPP Patch Number 4656)

This update fixes a segfault in the GSSAPI initialization. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29961; scriptversion"1.13";...

SuSE 10 Security Update : OpenSSH (ZYPP Patch Number 2184)

Several security problems were fixed in OpenSSH : - A denial of service problem has been fixed in OpenSSH which could be used to cause lots of CPU consumption on a remote openssh server. CVE-2006-4924 - If a remote attacker is able to inject network traffic this could be used to cause a client...

CVE-2007-5901

Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...

CVE-2007-5901

Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...

RHEL 4 : openssh (RHSA-2007:0703)

Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol implementation. These packages include the core files...

openssh security update

CentOS Errata and Security Advisory CESA-2007:0703 Updated openssh packages that fix two security issues and various bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenSSH is OpenBSD's SSH Secure SHell protocol...