FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

krb5 1.12 -- New release/fix multiple vulnerabilities

Affected packages
krb5-112 < 1.12.3

Details

VuXML ID 63527d0d-b9de-11e4-8a48-206a8a720317
Discovery 2015-02-20
Entry 2015-02-21

The MIT Kerberos team announces the availability of MIT Kerberos 5 Release 1.12.3:

Fix multiple vulnerabilities in the LDAP KDC back end. [CVE-2014-5354] [CVE-2014-5353]

Fix multiple kadmind vulnerabilities, some of which are based in the gssrpc library. [CVE-2014-5352 CVE-2014-5352 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423]

References

URL http://web.mit.edu/kerberos/krb5-1.12/README-1.12.3.txt