RepoView: Scientific Linux 6.3 i386 Security Errata

Jump to letter: [ 3 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z ]

krb5-server-ldap - The LDAP storage plugin for the Kerberos 5 KDC

Website:	http://web.mit.edu/kerberos/www/
License:	MIT
Vendor:	Scientific Linux

Description:

Kerberos is a network authentication system. The krb5-server package
contains the programs that must be installed on a Kerberos 5 key
distribution center (KDC).  If you are installing a Kerberos 5 KDC,
and you wish to use a directory server to store the data for your
realm, you need to install this package.

Packages

krb5-server-ldap-1.10.3-42z1.el6_7.i686 [157 KiB]	Changelog by Robbie Harwood (2016-02-12): - Fix CVE-2015-8629 and CVE-2015-8631 - Also fix a spec trigger issue that prevents building - Resolves: #1306973
krb5-server-ldap-1.10.3-37.el6_6.i686 [155 KiB]	Changelog by Roland Mainz (2015-04-01): - fix for CVE-2014-5355 (#1193939) "krb5: unauthenticated denial of service in recvauth_common() and others"
krb5-server-ldap-1.10.3-33.el6.i686 [154 KiB]	Changelog by Nalin Dahyabhai (2014-08-06): - actually apply that last patch
krb5-server-ldap-1.10.3-10.el6_4.3.i686 [150 KiB]	Changelog by Nalin Dahyabhai (2013-05-31): - pull up fix for UDP ping-pong flaw in kpasswd service (CVE-2002-2443,
krb5-server-ldap-1.10.3-10.el6_4.2.i686 [150 KiB]	Changelog by Nalin Dahyabhai (2013-04-09): - incorporate upstream patch to fix a NULL pointer dereference while processing certain TGS requests (CVE-2013-1416, #950342)
krb5-server-ldap-1.10.3-10.el6_4.1.i686 [150 KiB]	Changelog by Nalin Dahyabhai (2013-03-05): - incorporate upstream patch to fix a NULL pointer dereference when the client supplies an otherwise-normal-looking PKINIT request (CVE-2013-1415, #917909) - add patch to avoid dereferencing a NULL pointer in the KDC when handling a draft9 PKINIT request (#917909, CVE-2012-1016)
krb5-server-ldap-1.10.3-10.el6.i686 [149 KiB]	Changelog by Nalin Dahyabhai (2012-12-18): - make -server conflict with older versions of SELinux policy that didn't allow us to use eventfds, which libverto's backend may depend on in order to properly shut down a multi-worker KDC (#871524)
krb5-server-ldap-1.9-33.el6_3.2.i686 [141 KiB]	Changelog by Nalin Dahyabhai (2012-07-19): - pull up the patch to correct a possible NULL pointer dereference in kadmind (CVE-2012-1013, #827517)

Listing created by Repoview-0.6.6-4.el7