krb5 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1239727475
업데이트 : 2009.04.15
상세내용
1.3.4-60.2 update
- fixed CVE-2009-0846
CVE-2009-0846:
An input validation flaw was found in the ASN.1 (Abstract Syntax Notation
One) decoder used by MIT Kerberos. A remote attacker could use this flaw to
crash a network service using the MIT Kerberos library, such as kadmind or
krb5kdc, by causing it to dereference or free an uninitialized pointer.
Autoupdates 지원 : Packages System
pkgadd -F "krb5*"
update 패키지
RPMS :
. krb5-libs-1.3.4-60.2.i686.rpm
. krb5-server-1.3.4-60.2.i686.rpm
. krb5-workstation-1.3.4-60.2.i686.rpm
. krb5-devel-1.3.4-60.2.i686.rpm
SRPMS :
. krb5-1.3.4-60.2.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0846
|