Kerberos Key Distribution Center Denial of Service Vulnerability

Kerberos Key Distribution Center Denial of Service Vulnerability

Solution:
Sun has released an alert (Sun Alert ID: 50142) which contains fixes. Users are advised to upgrade as soon as possible.

Conectiva has released a security advisory (CLA-2003:639) containing fixes which address this issue. Users are advised to upgrade as soon as possible.

This issue has been addressed in Kerberos 1.2.5.

Sun Solaris 2.6

Sun 112534-02
For Solaris 2.6
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112534&rev=02

Sun Solaris 7.0

Sun 112536-02
For Solaris 7.0
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112536&rev=02

Sun Solaris 8_x86

Sun 112238-06
Global Patch
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112238&rev=06

Sun 112240-06
Domestic Patch
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112240&rev=06

Sun Solaris 2.6_x86

Sun 112535-02
For Solaris 2.6 x86
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112535&rev=02

Sun Solaris 8

Sun 112237-07
Global Patch
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112237&rev=07

Sun 112390-07
Domestic Patch
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112390&rev=07

Sun Solaris 9

Sun 112908-04
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112908&rev=04

Sun Solaris 7.0_x86

Sun 112537-03
For Solaris 7.0 x86
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112537&rev=03

Sun SEAM 1.0

Sun 112534-02
For Solaris 2.6
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112534&rev=02

Sun 112535-02
For Solaris 2.6 x86
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112535&rev=02

Sun 112536-02
For Solaris 7.0
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112536&rev=02

Sun 112537-03
For Solaris 7.0 x86
http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112537&rev=03

MIT Kerberos 5 1.1.1

Red Hat krb5-configs-1.1.1-40.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/krb5-configs-1.1.1-40.i386.rpm

Red Hat krb5-devel-1.1.1-40.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/krb5-devel-1.1.1-40.i386.rpm

Red Hat krb5-libs-1.1.1-40.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/krb5-libs-1.1.1-40.i386.rpm

Red Hat krb5-server-1.1.1-40.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/krb5-server-1.1.1-40.i386.rpm

Red Hat krb5-workstation-1.1.1-40.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/krb5-workstation-1.1.1-40.i386 .rpm

MIT Kerberos 5 1.2

MIT Kerberos 1.2.5
http://web.mit.edu/kerberos/www/krb5-1.2/index.html

MIT Kerberos 5 1.2.1

MIT Kerberos 1.2.5
http://web.mit.edu/kerberos/www/krb5-1.2/index.html

MIT Kerberos 5 1.2.2

MandrakeSoft ftp-client-krb5-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft ftp-client-krb5-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft ftp-server-krb5-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft ftp-server-krb5-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-devel-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-devel-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-libs-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-libs-1.2.2-17.5mdk.i586.rpm
Multi Network Firewall 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-libs-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-server-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-server-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-workstation-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft krb5-workstation-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft telnet-client-krb5-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft telnet-client-krb5-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft telnet-server-krb5-1.2.2-17.5mdk.i586.rpm
Mandrake Linux 8.2
http://www.mandrakesecure.net/en/ftp.php

MandrakeSoft telnet-server-krb5-1.2.2-17.5mdk.ppc.rpm
Mandrake Linux 8.2/PPC
http://www.mandrakesecure.net/en/ftp.php

MIT Kerberos 1.2.5
http://web.mit.edu/kerberos/www/krb5-1.2/index.html

Red Hat krb5-devel-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/krb5-devel-1.2.2-24.i386.rpm

Red Hat krb5-devel-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/krb5-devel-1.2.2-24.i386.rpm

Red Hat krb5-devel-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/krb5-devel-1.2.2-24.i386.rpm

Red Hat krb5-devel-1.2.2-24.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/krb5-devel-1.2.2-24.ia64.rpm

Red Hat krb5-libs-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/krb5-libs-1.2.2-24.i386.rpm

Red Hat krb5-libs-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/krb5-libs-1.2.2-24.i386.rpm

Red Hat krb5-libs-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/krb5-libs-1.2.2-24.i386.rpm

Red Hat krb5-libs-1.2.2-24.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/krb5-libs-1.2.2-24.ia64.rpm

Red Hat krb5-server-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/krb5-server-1.2.2-24.i386.rpm

Red Hat krb5-server-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/krb5-server-1.2.2-24.i386.rpm

Red Hat krb5-server-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/krb5-server-1.2.2-24.i386.rpm

Red Hat krb5-server-1.2.2-24.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/krb5-server-1.2.2-24.ia64.rpm

Red Hat krb5-workstation-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/krb5-workstation-1.2.2-24.i386 .rpm

Red Hat krb5-workstation-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/krb5-workstation-1.2.2-24.i386 .rpm

Red Hat krb5-workstation-1.2.2-24.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/krb5-workstation-1.2.2-24.i386 .rpm

Red Hat krb5-workstation-1.2.2-24.ia64.rpm
ftp://updates.redhat.com/7.2/en/os/ia64/krb5-workstation-1.2.2-24.ia64 .rpm

MIT Kerberos 5 1.2.3

Conectiva krb5-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-1.2.8-1U80_1cl.i386.rp m

Conectiva krb5-apps-clients-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-apps-clients-1.2.8-1U8 0_1cl.i386.rpm

Conectiva krb5-apps-servers-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-apps-servers-1.2.8-1U8 0_1cl.i386.rpm

Conectiva krb5-client-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-client-1.2.8-1U80_1cl. i386.rpm

Conectiva krb5-devel-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-devel-1.2.8-1U80_1cl.i 386.rpm

Conectiva krb5-devel-static-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-devel-static-1.2.8-1U8 0_1cl.i386.rpm

Conectiva krb5-doc-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-doc-1.2.8-1U80_1cl.i38 6.rpm

Conectiva krb5-server-1.2.8-1U80_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/8/RPMS/krb5-server-1.2.8-1U80_1cl. i386.rpm

MIT Kerberos 1.2.5
http://web.mit.edu/kerberos/www/krb5-1.2/index.html

MIT Kerberos 5 1.2.4

MIT Kerberos 1.2.5
http://web.mit.edu/kerberos/www/krb5-1.2/index.html

Red Hat krb5-devel-1.2.4-11.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/krb5-devel-1.2.4-11.i386.rpm

Red Hat krb5-libs-1.2.4-11.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/krb5-libs-1.2.4-11.i386.rpm

Red Hat krb5-server-1.2.4-11.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/krb5-server-1.2.4-11.i386.rpm

Red Hat krb5-workstation-1.2.4-11.i386.rpm
ftp://updates.redhat.com/7.3/en/os/i386/krb5-workstation-1.2.4-11.i386 .rpm