Gentoo Archives: gentoo-user-es

From: Daniel Ahlberg <aliz@g.o>
To: gentoo-announce@g.o
Subject: [gentoo-user-es] [gentoo-announce] GLSA: kth-krb
Date: Sat, 26 Oct 2002 11:06:06
Message-Id: 20021026160503.EB5A93368D@mail1.tamperd.net
1 -----BEGIN PGP SIGNED MESSAGE-----
2 Hash: SHA1
3
4 - - --------------------------------------------------------------------
5 GENTOO LINUX SECURITY ANNOUNCEMENT 200210-008
6 - - --------------------------------------------------------------------
7
8 PACKAGE : kth-krb & heimdal
9 SUMMARY : Remote root explot
10 DATE    : 2002-10-26 16:00 UTC
11 EXPLOIT : remote
12
13 - - --------------------------------------------------------------------
14
15 All versions of the kadmind daemon are vulnerable to a remote root
16 exploit, if compiled with support for the Kerberos 4 kadmin protocol.
17
18 SOLUTION
19
20 It is recommended that all Gentoo Linux users who are running
21 app-crypt/heimdal-0.5 & app-crypt/kth-krb-1.2 and earlier update their
22 systems as follows:
23
24 emerge rsync
25 emerge kth-krb
26 emerge heimdal
27 emerge clean
28
29 - - --------------------------------------------------------------------
30 aliz@g.o - GnuPG key is available at www.gentoo.org/~aliz
31 - - --------------------------------------------------------------------
32 -----BEGIN PGP SIGNATURE-----
33 Version: GnuPG v1.0.7 (GNU/Linux)
34
35 iD8DBQE9ur0ufT7nyhUpoZMRAkoVAJ965emvno57NuDf+58fSrZwzQZlSACffxmg
36 gRYeSIc/Flih9VXh6gtCrcw=
37 =D8Jl
38 -----END PGP SIGNATURE-----
39 _______________________________________________
40 gentoo-announce mailing list
41 gentoo-announce@g.o
42 http://lists.gentoo.org/mailman/listinfo/gentoo-announce