Synopsis: Moderate: krb5 security update Advisory ID: SLSA-2014:1255-1 Issue Date: 2014-09-17 CVE Numbers: CVE-2014-4345 -- A buffer overflow was found in the KADM5 administration server (kadmind) when it was used with an LDAP back end for the KDC database. A remote, authenticated attacker could potentially use this flaw to execute arbitrary code on the system running kadmind. (CVE-2014-4345) After installing the updated packages, the krb5kdc and kadmind daemons will be restarted automatically. -- SL5 x86_64 krb5-debuginfo-1.6.1-80.el5_11.i386.rpm krb5-debuginfo-1.6.1-80.el5_11.x86_64.rpm krb5-libs-1.6.1-80.el5_11.i386.rpm krb5-libs-1.6.1-80.el5_11.x86_64.rpm krb5-workstation-1.6.1-80.el5_11.x86_64.rpm krb5-devel-1.6.1-80.el5_11.i386.rpm krb5-devel-1.6.1-80.el5_11.x86_64.rpm krb5-server-1.6.1-80.el5_11.x86_64.rpm krb5-server-ldap-1.6.1-80.el5_11.x86_64.rpm i386 krb5-debuginfo-1.6.1-80.el5_11.i386.rpm krb5-libs-1.6.1-80.el5_11.i386.rpm krb5-workstation-1.6.1-80.el5_11.i386.rpm krb5-devel-1.6.1-80.el5_11.i386.rpm krb5-server-1.6.1-80.el5_11.i386.rpm krb5-server-ldap-1.6.1-80.el5_11.i386.rpm - Scientific Linux Development Team