Secunia Logo
Netsikker nu! 2008
 Vulnerability IntelligenceVulnerability ScanningBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Mandriva update for krb5
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Mandriva update for krb5
Secunia Advisory: SA24785
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2007-04-05
Popularity: 5,472 views

Critical:
Moderately critical
Impact: Security Bypass
DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:Mandriva Linux 2006
Mandriva Linux 2007.0
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2007-0956
CVE-2007-0957
CVE-2007-1216
Description:
Mandriva has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users to cause a DoS or compromise a vulnerable system and by malicious people to bypass certain security restrictions.

For more information:
SA24740

Solution:
Apply updated packages.

Mandriva Linux 2006

f76875e9839deaf87628a3c7e0a81632 2006.0/i586/ftp-client-krb5-1.4.2-2.2.20060mdk.i586.rpm
d2448392e0c350d3ca488d2e73e57f6d 2006.0/i586/ftp-server-krb5-1.4.2-2.2.20060mdk.i586.rpm
42e6330603ecaed04ea0649f7050a4c1 2006.0/i586/krb5-server-1.4.2-2.2.20060mdk.i586.rpm
adadd1cad1f1bc5f01809a508d2b8fd1 2006.0/i586/krb5-workstation-1.4.2-2.2.20060mdk.i586.rpm
ab8987522600f8e629901563e3be90c2 2006.0/i586/libkrb53-1.4.2-2.2.20060mdk.i586.rpm
7d70bb7bb821c3e91e9d062330528815 2006.0/i586/libkrb53-devel-1.4.2-2.2.20060mdk.i586.rpm
f4104abdc22e16574bcddde0a178d935 2006.0/i586/telnet-client-krb5-1.4.2-2.2.20060mdk.i586.rpm
110f54ead0abc486faa1f2b47057122b 2006.0/i586/telnet-server-krb5-1.4.2-2.2.20060mdk.i586.rpm
8cc03b4b7cc34cb3c2b53e4f9f9b73dd 2006.0/SRPMS/krb5-1.4.2-2.2.20060mdk.src.rpm

Mandriva Linux 2006/X86_64

0f2d7c3fc50552aa586dd6c5b12a5b85 2006.0/x86_64/ftp-client-krb5-1.4.2-2.2.20060mdk.x86_64.rpm
bbd94e005c67b4b94cf544b736028416 2006.0/x86_64/ftp-server-krb5-1.4.2-2.2.20060mdk.x86_64.rpm
f406f21d7b210ae6d489c77c15d34a60 2006.0/x86_64/krb5-server-1.4.2-2.2.20060mdk.x86_64.rpm
9d00284ec202ed44e63266698a1d85e6 2006.0/x86_64/krb5-workstation-1.4.2-2.2.20060mdk.x86_64.rpm
8ca28a4cc9eb7f292a1d73b975740fab 2006.0/x86_64/lib64krb53-1.4.2-2.2.20060mdk.x86_64.rpm
565b9a19c5cf7b94dcf28e1bc1e21d2e 2006.0/x86_64/lib64krb53-devel-1.4.2-2.2.20060mdk.x86_64.rpm
5c931d032ce9d3ed91a4e4b04f20bfb8 2006.0/x86_64/telnet-client-krb5-1.4.2-2.2.20060mdk.x86_64.rpm
27b39ae245a43322d4abbb4191da56ac 2006.0/x86_64/telnet-server-krb5-1.4.2-2.2.20060mdk.x86_64.rpm
8cc03b4b7cc34cb3c2b53e4f9f9b73dd 2006.0/SRPMS/krb5-1.4.2-2.2.20060mdk.src.rpm

Mandriva Linux 2007

6dfbc8eef1479cce19c957bbed4457aa 2007.0/i586/ftp-client-krb5-1.4.3-6.1mdv2007.0.i586.rpm
54ff3fe8a117603f8700e96f34a1b33a 2007.0/i586/ftp-server-krb5-1.4.3-6.1mdv2007.0.i586.rpm
2caf0205301d01a6be4ad1506944ba39 2007.0/i586/krb5-server-1.4.3-6.1mdv2007.0.i586.rpm
b7b4a4f4b1fa356ca6468ffece1dfce8 2007.0/i586/krb5-workstation-1.4.3-6.1mdv2007.0.i586.rpm
ab253c6ad6ecd7c15c1d150f5ed34091 2007.0/i586/libkrb53-1.4.3-6.1mdv2007.0.i586.rpm
f192ef28bb37286be1e291761d3ced9c 2007.0/i586/libkrb53-devel-1.4.3-6.1mdv2007.0.i586.rpm
d208fcaa1c5069c657815061ed3b2687 2007.0/i586/telnet-client-krb5-1.4.3-6.1mdv2007.0.i586.rpm
0f95ea728eca0962591d142c74238700 2007.0/i586/telnet-server-krb5-1.4.3-6.1mdv2007.0.i586.rpm
87c94334c61bc67e3ef95e930ee72149 2007.0/SRPMS/krb5-1.4.3-6.1mdv2007.0.src.rpm

Mandriva Linux 2007/X86_64

02a5ebc046e0cb9133162ce621fb3b1f 2007.0/x86_64/ftp-client-krb5-1.4.3-6.1mdv2007.0.x86_64.rpm
0a2b6ae87af0ed4ec445b65531d3408a 2007.0/x86_64/ftp-server-krb5-1.4.3-6.1mdv2007.0.x86_64.rpm
e2958d861bb45c52be5cad5bbf08ef35 2007.0/x86_64/krb5-server-1.4.3-6.1mdv2007.0.x86_64.rpm
fac1f28b2c5a2065ffa772e2e1cb6d70 2007.0/x86_64/krb5-workstation-1.4.3-6.1mdv2007.0.x86_64.rpm
36bcd1fb2e859c637256680ca4fc468b 2007.0/x86_64/lib64krb53-1.4.3-6.1mdv2007.0.x86_64.rpm
7d936ed2b1441714205e987bd63a2ec5 2007.0/x86_64/lib64krb53-devel-1.4.3-6.1mdv2007.0.x86_64.rpm
4754b9b3ce36cad7d3dfa852a03d7fe0 2007.0/x86_64/telnet-client-krb5-1.4.3-6.1mdv2007.0.x86_64.rpm
71832a8dcf70b4e46b0bb9bc3343860d 2007.0/x86_64/telnet-server-krb5-1.4.3-6.1mdv2007.0.x86_64.rpm
87c94334c61bc67e3ef95e930ee72149 2007.0/SRPMS/krb5-1.4.3-6.1mdv2007.0.src.rpm

Original Advisory:
http://www.mandriva.com/security/advisories?name=MDKSA-2007:077

Other References:
SA24740:
http://secunia.com/advisories/24740/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

10th Oct, 2008
New advisories: 15
New vulnerabilities: 83
Updated advisories: 41

Moderately // 769 views
ScriptsEz Easy Image Downloader "id" File Disclosure Vulnerability
Moderately // 750 views
Built2go Real Estate Listings "event_id" SQL Injection
Highly // 1,095 views
Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow
Moderately // 787 views
Red Hat update for cups
Highly // 797 views
DFF PHP Framework API "DFF_config[dir_incl ude]" File Inclusion Vulnerabilities
Not // 870 views
FUJITSU Interstage Products Apache Tomcat Security Bypass
Moderately // 1,146 views
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
Moderately // 753 views
Fedora update for condor
Moderately // 1,184 views
CUPS Multiple Vulnerabilities
Not // 817 views
Gentoo Portage Insecure Python Module Search Path Security Issue

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. phpBB Avatar Script Insertion Vulnerability // 42 views
2. phpBB Avatar Functions Information Disclosure and Deletion // 37 views
3. CUPS Multiple Vulnerabilities // 34 views
4. CA ARCserve Backup Multiple Vulnerabilities // 33 views
5. Sun Java System Web Proxy Server FTP Subsystem Buffer Overflow // 32 views
6. ScriptsEz Easy Image Downloader "id" File Disclosure Vulnerability // 31 views
7. Apple Mac OS X Security Update Fixes Multiple Vulnerabilities // 30 views
8. phpBB Cross Site Scripting and Unspecified Vulnerabilities // 26 views
9. phpBB BBcode "url" Script Insertion Vulnerability // 26 views
10. phpBB reveals user IPs // 26 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2008