Synopsis: Moderate: krb5 security update Issue date: 2010-11-30 CVE Names: CVE-2010-1323 Multiple checksum validation flaws were discovered in the MIT Kerberos implementation. A remote attacker could use these flaws to tamper with certain Kerberos protocol packets and, possibly, bypass authentication mechanisms in certain configurations using Single-use Authentication Mechanisms. (CVE-2010-1323) After installing the updated packages, the krb5kdc daemon will be restarted automatically. SL 4.x SRPMS: krb5-1.3.4-62.el4_8.3.src.rpm i386: krb5-devel-1.3.4-62.el4_8.3.i386.rpm krb5-libs-1.3.4-62.el4_8.3.i386.rpm krb5-server-1.3.4-62.el4_8.3.i386.rpm krb5-workstation-1.3.4-62.el4_8.3.i386.rpm x86_64: krb5-devel-1.3.4-62.el4_8.3.x86_64.rpm krb5-libs-1.3.4-62.el4_8.3.i386.rpm krb5-libs-1.3.4-62.el4_8.3.x86_64.rpm krb5-server-1.3.4-62.el4_8.3.x86_64.rpm krb5-workstation-1.3.4-62.el4_8.3.x86_64.rpm SL 5.x SRPMS: krb5-1.6.1-36.el5_5.6.src.rpm i386: krb5-devel-1.6.1-36.el5_5.6.i386.rpm krb5-libs-1.6.1-36.el5_5.6.i386.rpm krb5-server-1.6.1-36.el5_5.6.i386.rpm krb5-workstation-1.6.1-36.el5_5.6.i386.rpm x86_64: krb5-devel-1.6.1-36.el5_5.6.i386.rpm krb5-devel-1.6.1-36.el5_5.6.x86_64.rpm krb5-libs-1.6.1-36.el5_5.6.i386.rpm krb5-libs-1.6.1-36.el5_5.6.x86_64.rpm krb5-server-1.6.1-36.el5_5.6.x86_64.rpm krb5-workstation-1.6.1-36.el5_5.6.x86_64.rpm -Connie Sieh -Troy Dawson