[27637] in bugtraq
KRB5-SORCERER2002-10-27 Security Update
daemon@ATHENA.MIT.EDU (ask33@linuxmountain.org)
Tue Oct 29 16:46:25 2002
Date: Sun, 27 Oct 2002 17:38:19 -0600
From: ask33@linuxmountain.org
To: bugtraq@securityfocus.com
Message-ID: <20021027233819.GA23631@zeus.bitstreet.net>
Mime-Version: 1.0
Content-Type: multipart/mixed; boundary="HcAYCG3uE/tztfnV"
Content-Disposition: inline
--HcAYCG3uE/tztfnV
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
--HcAYCG3uE/tztfnV
Content-Type: text/plain; charset=us-ascii
Content-Disposition: attachment; filename=KRB5-SORCERER2002-10-27
Sorcerer Update Advisory
________________________________________________________________________
Spell Name: krb5
Advisory ID: SORCERER2002-10-27
Date: October 27th, 2002
________________________________________________________________________
Problem Description:
Kadmind daemon has a remote root exploit if compiled with support for Kerebros 4 kadmin protocol.
Update:
Patched source code for krb5 spell. You can get updated spells by doing an
augur synch
augur update
Or if you are holding on some updates
augur synch
cast krb5
Please upgrade as soon as possible.
________________________________________________________________________
Updated Sources:
krb5-1.2.6
2002-002-kadm4_patch.txt
--HcAYCG3uE/tztfnV--
