--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2017-f0e5ad250c
2018-01-09 23:48:23.438077
--------------------------------------------------------------------------------Name        : heimdal
Product     : Fedora 27
Version     : 7.5.0
Release     : 1.fc27
URL         : https://github.com/heimdal/
Summary     : A Kerberos 5 implementation without export restrictions
Description :
Kerberos 5 is a network authentication and single sign-on system.
Heimdal is a free Kerberos 5 implementation without export restrictions
written from the spec (rfc1510 and successors) including advanced features
like thread safety, IPv6, master-slave replication of Kerberos Key
Distribution Center server and support for ticket delegation (S4U2Self,
S4U2Proxy).
This package can coexist with MIT Kerberos 5 packages. Hesiod is disabled
by default since it is deemed too big a security risk by the packager.

--------------------------------------------------------------------------------Update Information:

Update to 7.5.0 GA release (CVE-2017-17439)
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #1524546 - CVE-2017-17439 heimdal: NULL pointer dereference via crafted UDP packets
        https://bugzilla.redhat.com/show_bug.cgi?id=1524546
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade heimdal' at the command line.
For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora 27: heimdal Security Update

January 10, 2018
Update to 7.5.0 GA release (CVE-2017-17439)

Summary

Kerberos 5 is a network authentication and single sign-on system.

Heimdal is a free Kerberos 5 implementation without export restrictions

written from the spec (rfc1510 and successors) including advanced features

like thread safety, IPv6, master-slave replication of Kerberos Key

Distribution Center server and support for ticket delegation (S4U2Self,

S4U2Proxy).

This package can coexist with MIT Kerberos 5 packages. Hesiod is disabled

by default since it is deemed too big a security risk by the packager.

Update to 7.5.0 GA release (CVE-2017-17439)

[ 1 ] Bug #1524546 - CVE-2017-17439 heimdal: NULL pointer dereference via crafted UDP packets

https://bugzilla.redhat.com/show_bug.cgi?id=1524546

su -c 'dnf upgrade heimdal' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

FEDORA-2017-f0e5ad250c 2018-01-09 23:48:23.438077 Product : Fedora 27 Version : 7.5.0 Release : 1.fc27 URL : https://github.com/heimdal/ Summary : A Kerberos 5 implementation without export restrictions Description : Kerberos 5 is a network authentication and single sign-on system. Heimdal is a free Kerberos 5 implementation without export restrictions written from the spec (rfc1510 and successors) including advanced features like thread safety, IPv6, master-slave replication of Kerberos Key Distribution Center server and support for ticket delegation (S4U2Self, S4U2Proxy). This package can coexist with MIT Kerberos 5 packages. Hesiod is disabled by default since it is deemed too big a security risk by the packager. Update to 7.5.0 GA release (CVE-2017-17439) [ 1 ] Bug #1524546 - CVE-2017-17439 heimdal: NULL pointer dereference via crafted UDP packets https://bugzilla.redhat.com/show_bug.cgi?id=1524546 su -c 'dnf upgrade heimdal' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Change Log

References

Update Instructions

Severity
Product : Fedora 27
Version : 7.5.0
Release : 1.fc27
URL : https://github.com/heimdal/
Summary : A Kerberos 5 implementation without export restrictions

Related News

28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
8.Locks HexConnections CodeGlobe Esm H320
2 - 3 min read
Canonical has launched Ubuntu Pro for Devices , a comprehensive offering emphasizing security and compliance for IoT device deployments. This
2.Motherboard Esm H320
2 - 3 min read
The recently uncovered "Native Branch History Injection (BHI)" exploit against the Linux kernel marks a significant milestone in the ongoing battle
1.Penguin Landscape Esm H320
1 - 2 min read
There are compelling arguments in favor of Linux over Windows for desktop usage. Let's explore some advantages of choosing Linux over Windows for
4.Lock AbstractDigital Esm H320
2 - 3 min read
Canonical , the company behind Ubuntu , has introduced Netplan 1.0 , a network configuration tool that simplifies networking configuration on Linux

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved