989 – possible vulnerability in krb5

Bug 989 - possible vulnerability in krb5

Summary: possible vulnerability in krb5

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	Cauldron
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Mageia Bug Squad
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:	908
	Show dependency tree / graph

Reported:	2011-04-25 17:33 CEST by Stew Benedict
Modified:	2014-05-08 18:06 CEST (History)
CC List:	2 users (show)

See Also:
Source RPM:	krb5-1.8.3-4.mga1
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Stew Benedict 2011-04-25 17:33:07 CEST

Description of problem:

Browsing through the osvdb.org entries, I see a possible krb5 issue we may not have picked up yet:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0285


Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Stew Benedict 2011-04-25 17:35:03 CEST

Blocks: (none) => 908

Comment 1 John Balcaen 2011-04-25 23:23:06 CEST

There's also CVE-2011-0284 & CVE-2011-0281 from http://web.mit.edu/kerberos/advisories/  ?

CC: (none) => balcaen.john
Hardware: i586 => All

Nicolas Vigier 2011-04-26 20:12:37 CEST

CC: (none) => boklm
Component: RPM Packages => Security

Nicolas Vigier 2011-04-26 20:13:40 CEST

Summary: possible vulnerabilty => possible vulnerability in krb5

Comment 2 Jérôme Soyer 2011-05-03 15:22:20 CEST

All CVE from 2010 and 2011 are synced in release krb5-1.8.3-5.mga1, i submit it.

Status: NEW => RESOLVED
CC: (none) => saispo
Resolution: (none) => FIXED

Nicolas Vigier 2014-05-08 18:06:16 CEST

CC: boklm => (none)

Note You need to log in before you can comment on or make changes to this bug.