From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-1969-1
[email protected] http://www.debian.org/security/ Giuseppe Iuculano January 12, 2010
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : krb5
Vulnerability : integer underflow
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2009-4212
Debian Bug : none
It was discovered that krb5, a system for authenticating users and services on a
network, is prone to integer underflow in the AES and RC4 decryption operations of
the crypto library. A remote attacker can cause crashes, heap corruption, or, under extraordinarily unlikely conditions, arbitrary code execution.
For the old stable distribution (etch), this problem has been fixed in
version 1.4.4-7etch8.
For the stable distribution (lenny), this problem has been fixed in
version 1.6.dfsg.4~beta1-5lenny2.
For the testing distribution (squeeze), this problem will be fixed soon.
For the unstable distribution (sid), this problem has been fixed in
version 1.8+dfsg~alpha1-1.
We recommend that you upgrade your krb5 package.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/k/krb5/krb5_1.4.4-7etch8.dsc
Size/MD5 checksum: 884 4ee0daa9f7a62bb59b665585dfc699d9
http://security.debian.org/pool/updates/main/k/krb5/krb5_1.4.4.orig.tar.gz
Size/MD5 checksum: 11017910 a675e5953bb8a29b5c6eb6f4ab0bb32a
http://security.debian.org/pool/updates/main/k/krb5/krb5_1.4.4-7etch8.diff.gz
Size/MD5 checksum: 1590501 546997d33ae6e7a7d8daa7cec8eeed3f
Architecture independent packages:
http://security.debian.org/pool/updates/main/k/krb5/krb5-doc_1.4.4-7etch8_all.deb
Size/MD5 checksum: 1806668 4bdcd4ef469018cadaf6acf6782b2c0c
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 66426 c7715fa7c77e4d861ae2c5b6bb2523ef
http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 1017748 f70cc2b7b95219218bbae652bae2011f
http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 1088876 eb19f3e6ee7e34c15d1c036eeb1ab3ca
http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 216408 2cf4a2b423df4358d3003b64b5d8c5b8
http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 89570 6245b91a6384231f06db23ac68b81743
http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 76316 019757cc0b367128f90d5de3d24b2750
http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 245950 e21517ad70bd355bfab8439cd9753be9
http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 155570 ee316999fb912edfb6ce481e19285c22
http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 136924 010501b5910d3afc49763021e9702527
http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 92386 6a50f75d72010e6908bfc3a4bf6466b8
http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_alpha.deb
Size/MD5 checksum: 461704 ba58baccaeac818475af555154853b5c
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/k/krb5/krb5-rsh-server_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 87118 fe568cfa5b5c4db84516e6177c35bfac
http://security.debian.org/pool/updates/main/k/krb5/libkrb53_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 427114 fc0d3cbf9ba99bf127f99500701d3a84
http://security.debian.org/pool/updates/main/k/krb5/krb5-admin-server_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 84254 f6074da963c6336728384045c2a93dfb
http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dbg_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 1073020 17030c0f4d64cd46f9c7a36a68ef60f3
http://security.debian.org/pool/updates/main/k/krb5/krb5-user_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 131638 2c3a999c180a2459f3b99985fe9baf1f
http://security.debian.org/pool/updates/main/k/krb5/krb5-clients_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 222206 7568096cc250818d8471a388e8eeac09
http://security.debian.org/pool/updates/main/k/krb5/libkadm55_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 190912 0beb7c8d9b28a67896e76281bbb97d82
http://security.debian.org/pool/updates/main/k/krb5/krb5-kdc_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 142510 9af4235fe3bfa0629884322440a980bb
http://security.debian.org/pool/updates/main/k/krb5/krb5-ftpd_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 62480 690f768fae84f2c96bd5d80b2e87fe70
http://security.debian.org/pool/updates/main/k/krb5/libkrb5-dev_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 767772 b35e650c85f15a2279fc287217d1a9d0
http://security.debian.org/pool/updates/main/k/krb5/krb5-telnetd_1.4.4-7etch8_amd64.deb
Size/MD5 checksum: 68558 9c0b741886e3052ea6e8830200d70df9
arm architecture (ARM)
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)