Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2004-0175
Vulnerability from cvelistv5
Published
2004-06-03 04:00
Modified
2024-08-08 00:10
Severity ?
EPSS score ?
Summary
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-08T00:10:03.600Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "RHSA-2005:165", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-165.html" }, { "name": "RHSA-2005:106", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-106.html" }, { "name": "RHSA-2005:567", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-567.html" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.juniper.net/support/security/alerts/adv59739.txt" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147" }, { "name": "RHSA-2005:495", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-495.html" }, { "name": "RHSA-2005:562", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-562.html" }, { "name": "MDVSA-2008:191", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:191" }, { "name": "SuSE-SA:2004:009", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://www.novell.com/linux/security/advisories/2004_09_kernel.html" }, { "name": "MDKSA-2005:100", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:100" }, { "name": "19243", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/19243" }, { "name": "openssh-scp-file-overwrite(16323)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16323" }, { "name": "oval:org.mitre.oval:def:10184", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184" }, { "name": "17135", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/17135" }, { "name": "SCOSA-2006.11", "tags": [ "vendor-advisory", "x_refsource_SCO", "x_transferred" ], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt" }, { "name": "RHSA-2005:074", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-074.html" }, { "name": "RHSA-2005:481", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-481.html" }, { "name": "9550", "tags": [ "vdb-entry", "x_refsource_OSVDB", "x_transferred" ], "url": "http://www.osvdb.org/9550" }, { "name": "CLSA-2004:831", "tags": [ "vendor-advisory", "x_refsource_CONECTIVA", "x_transferred" ], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831" }, { "name": "O-212", "tags": [ "third-party-advisory", "government-resource", "x_refsource_CIAC", "x_transferred" ], "url": "http://www.ciac.org/ciac/bulletins/o-212.shtml" }, { "name": "9986", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/9986" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2004-03-19T00:00:00", "descriptions": [ { "lang": "en", "value": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "name": "RHSA-2005:165", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-165.html" }, { "name": "RHSA-2005:106", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-106.html" }, { "name": "RHSA-2005:567", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-567.html" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.juniper.net/support/security/alerts/adv59739.txt" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147" }, { "name": "RHSA-2005:495", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-495.html" }, { "name": "RHSA-2005:562", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-562.html" }, { "name": "MDVSA-2008:191", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:191" }, { "name": "SuSE-SA:2004:009", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://www.novell.com/linux/security/advisories/2004_09_kernel.html" }, { "name": "MDKSA-2005:100", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:100" }, { "name": "19243", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/19243" }, { "name": "openssh-scp-file-overwrite(16323)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16323" }, { "name": "oval:org.mitre.oval:def:10184", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184" }, { "name": "17135", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/17135" }, { "name": "SCOSA-2006.11", "tags": [ "vendor-advisory", "x_refsource_SCO" ], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt" }, { "name": "RHSA-2005:074", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-074.html" }, { "name": "RHSA-2005:481", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2005-481.html" }, { "name": "9550", "tags": [ "vdb-entry", "x_refsource_OSVDB" ], "url": "http://www.osvdb.org/9550" }, { "name": "CLSA-2004:831", "tags": [ "vendor-advisory", "x_refsource_CONECTIVA" ], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831" }, { "name": "O-212", "tags": [ "third-party-advisory", "government-resource", "x_refsource_CIAC" ], "url": "http://www.ciac.org/ciac/bulletins/o-212.shtml" }, { "name": "9986", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/9986" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0175", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2005:165", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-165.html" }, { "name": "RHSA-2005:106", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-106.html" }, { "name": "RHSA-2005:567", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-567.html" }, { "name": "http://www.juniper.net/support/security/alerts/adv59739.txt", "refsource": "CONFIRM", "url": "http://www.juniper.net/support/security/alerts/adv59739.txt" }, { "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147" }, { "name": "RHSA-2005:495", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-495.html" }, { "name": "RHSA-2005:562", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-562.html" }, { "name": "MDVSA-2008:191", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:191" }, { "name": "SuSE-SA:2004:009", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2004_09_kernel.html" }, { "name": "MDKSA-2005:100", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:100" }, { "name": "19243", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19243" }, { "name": "openssh-scp-file-overwrite(16323)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16323" }, { "name": "oval:org.mitre.oval:def:10184", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184" }, { "name": "17135", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17135" }, { "name": "SCOSA-2006.11", "refsource": "SCO", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt" }, { "name": "RHSA-2005:074", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-074.html" }, { "name": "RHSA-2005:481", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-481.html" }, { "name": "9550", "refsource": "OSVDB", "url": "http://www.osvdb.org/9550" }, { "name": "CLSA-2004:831", "refsource": "CONECTIVA", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831" }, { "name": "O-212", "refsource": "CIAC", "url": "http://www.ciac.org/ciac/bulletins/o-212.shtml" }, { "name": "9986", "refsource": "BID", "url": "http://www.securityfocus.com/bid/9986" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0175", "datePublished": "2004-06-03T04:00:00", "dateReserved": "2004-02-25T00:00:00", "dateUpdated": "2024-08-08T00:10:03.600Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2004-0175\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2004-08-18T04:00:00.000\",\"lastModified\":\"2024-11-20T23:47:55.903\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de atravesamiento de directorios en scp de OpenSSH anteriores a 3.4p1 permite a servidores remotos maliciosos sobreescribir ficheros de su eleccion.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"580008AC-2667-4708-8F7E-D70416A460EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E05D8E86-EC01-4589-B372-4DEB7845C81F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.0.1p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"764AD252-CA2F-4A87-BCAA-7747E8C410E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CFFAA075-4277-4FD8-8A5A-867EEE1BA2F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.0.2p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"269BB9F7-55E5-4CB3-8429-C37C7132799F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.0p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6E6F639-31A0-4026-B6D4-51BA79FB1D20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0211BCE3-0DED-40BA-8A21-1A97B91F71C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.1p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4EE9E4B-CABC-4EA2-9075-CC23CEB1B0A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AD7BB30-AC79-4153-852C-1053DCF4DE53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.2.2p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E188C66-C8F1-4C13-AAFF-7C83B2A884B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.2.3p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9039BE91-AF0A-41E7-8F9F-15375890E120\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08BCB2EA-DF9D-4853-805B-29FA6274E2B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.3p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F93417F-2498-4576-9F5D-B59F77D39669\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF3AB42C-B614-4746-99AD-E94140D91BF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openbsd:openssh:3.4p1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"458167E5-9BC2-40BE-AC8A-9761A4F19494\"}]}]}],\"references\":[{\"url\":\"ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/17135\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19243\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ciac.org/ciac/bulletins/o-212.shtml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.juniper.net/support/security/alerts/adv59739.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2005:100\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:191\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2004_09_kernel.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.osvdb.org/9550\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-074.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-106.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-165.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-481.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-495.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-562.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-567.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/9986\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/16323\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184\",\"source\":\"cve@mitre.org\"},{\"url\":\"ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/17135\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19243\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ciac.org/ciac/bulletins/o-212.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.juniper.net/support/security/alerts/adv59739.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2005:100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:191\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2004_09_kernel.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.osvdb.org/9550\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-074.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-106.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-165.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-481.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-495.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-562.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2005-567.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/9986\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/16323\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.\",\"lastModified\":\"2007-03-14T00:00:00\"}]}}" } }
rhsa-2005_567
Vulnerability from csaf_redhat
Published
2005-07-12 18:15
Modified
2024-11-21 23:52
Summary
Red Hat Security Advisory: krb5 security update
Notes
Topic
Updated krb5 packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 4.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Kerberos is a networked authentication system that uses a trusted third
party (a KDC) to authenticate clients and servers to each other.
A double-free flaw was found in the krb5_recvauth() routine which may be
triggered by a remote unauthenticated attacker. Red Hat Enterprise Linux 4
contains checks within glibc that detect double-free flaws. Therefore, on
Red Hat Enterprise Linux 4 successful exploitation of this issue can only
lead to a denial of service (KDC crash). The Common Vulnerabilities and
Exposures project assigned the name CAN-2005-1689 to this issue.
Daniel Wachdorf discovered a single byte heap overflow in the
krb5_unparse_name() function, part of krb5-libs. Sucessful exploitation of
this flaw would lead to a denial of service (crash). To trigger this flaw
an attacker would need to have control of a kerberos realm that shares a
cross-realm key with the target, making exploitation of this flaw unlikely.
(CAN-2005-1175).
Daniel Wachdorf also discovered that in error conditions that may occur in
response to correctly-formatted client requests, the Kerberos 5 KDC may
attempt to free uninitialized memory. This could allow a remote attacker
to cause a denial of service (KDC crash) (CAN-2005-1174).
Gaël Delalleau discovered an information disclosure issue in the way
some telnet clients handle messages from a server. An attacker could
construct a malicious telnet server that collects information from the
environment of any victim who connects to it using the Kerberos-aware
telnet client (CAN-2005-0488).
The rcp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses the Kerberos-aware rcp to copy files from a
malicious server (CAN-2004-0175).
All users of krb5 should update to these erratum packages, which contain
backported patches to correct these issues. Red Hat would like to thank
the MIT Kerberos Development Team for their responsible disclosure of these
issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated krb5 packages that fix multiple security issues are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Kerberos is a networked authentication system that uses a trusted third\nparty (a KDC) to authenticate clients and servers to each other.\n\nA double-free flaw was found in the krb5_recvauth() routine which may be\ntriggered by a remote unauthenticated attacker. Red Hat Enterprise Linux 4\ncontains checks within glibc that detect double-free flaws. Therefore, on\nRed Hat Enterprise Linux 4 successful exploitation of this issue can only\nlead to a denial of service (KDC crash). The Common Vulnerabilities and\nExposures project assigned the name CAN-2005-1689 to this issue.\n\nDaniel Wachdorf discovered a single byte heap overflow in the\nkrb5_unparse_name() function, part of krb5-libs. Sucessful exploitation of\nthis flaw would lead to a denial of service (crash). To trigger this flaw\nan attacker would need to have control of a kerberos realm that shares a\ncross-realm key with the target, making exploitation of this flaw unlikely.\n(CAN-2005-1175).\n\nDaniel Wachdorf also discovered that in error conditions that may occur in\nresponse to correctly-formatted client requests, the Kerberos 5 KDC may\nattempt to free uninitialized memory. This could allow a remote attacker\nto cause a denial of service (KDC crash) (CAN-2005-1174).\n\nGa\u00ebl Delalleau discovered an information disclosure issue in the way\nsome telnet clients handle messages from a server. An attacker could\nconstruct a malicious telnet server that collects information from the\nenvironment of any victim who connects to it using the Kerberos-aware\ntelnet client (CAN-2005-0488).\n\nThe rcp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses the Kerberos-aware rcp to copy files from a\nmalicious server (CAN-2004-0175).\n\nAll users of krb5 should update to these erratum packages, which contain\nbackported patches to correct these issues. Red Hat would like to thank\nthe MIT Kerberos Development Team for their responsible disclosure of these\nissues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:567", "url": "https://access.redhat.com/errata/RHSA-2005:567" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "157103", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=157103" }, { "category": "external", "summary": "159304", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=159304" }, { "category": "external", "summary": "159756", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=159756" }, { "category": "external", "summary": "161471", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=161471" }, { "category": "external", "summary": "161611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=161611" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_567.json" } ], "title": "Red Hat Security Advisory: krb5 security update", "tracking": { "current_release_date": "2024-11-21T23:52:38+00:00", "generator": { "date": "2024-11-21T23:52:38+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:567", "initial_release_date": "2005-07-12T18:15:00+00:00", "revision_history": [ { "date": "2005-07-12T18:15:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-07-12T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:52:38+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.ia64", "product": { "name": "krb5-debuginfo-0:1.3.4-17.ia64", "product_id": "krb5-debuginfo-0:1.3.4-17.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=ia64" } } }, { "category": "product_version", "name": "krb5-server-0:1.3.4-17.ia64", "product": { "name": "krb5-server-0:1.3.4-17.ia64", "product_id": "krb5-server-0:1.3.4-17.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.3.4-17?arch=ia64" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.ia64", "product": { "name": "krb5-libs-0:1.3.4-17.ia64", "product_id": "krb5-libs-0:1.3.4-17.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=ia64" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.3.4-17.ia64", "product": { "name": "krb5-workstation-0:1.3.4-17.ia64", "product_id": "krb5-workstation-0:1.3.4-17.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.3.4-17?arch=ia64" } } }, { "category": "product_version", "name": "krb5-devel-0:1.3.4-17.ia64", "product": { "name": "krb5-devel-0:1.3.4-17.ia64", "product_id": "krb5-devel-0:1.3.4-17.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.3.4-17?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.i386", "product": { "name": "krb5-debuginfo-0:1.3.4-17.i386", "product_id": "krb5-debuginfo-0:1.3.4-17.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=i386" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.i386", "product": { "name": "krb5-libs-0:1.3.4-17.i386", "product_id": "krb5-libs-0:1.3.4-17.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=i386" } } }, { "category": "product_version", "name": "krb5-server-0:1.3.4-17.i386", "product": { "name": "krb5-server-0:1.3.4-17.i386", "product_id": "krb5-server-0:1.3.4-17.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.3.4-17?arch=i386" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.3.4-17.i386", "product": { "name": "krb5-workstation-0:1.3.4-17.i386", "product_id": "krb5-workstation-0:1.3.4-17.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.3.4-17?arch=i386" } } }, { "category": "product_version", "name": "krb5-devel-0:1.3.4-17.i386", "product": { "name": "krb5-devel-0:1.3.4-17.i386", "product_id": "krb5-devel-0:1.3.4-17.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.3.4-17?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.x86_64", "product": { "name": "krb5-debuginfo-0:1.3.4-17.x86_64", "product_id": "krb5-debuginfo-0:1.3.4-17.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-server-0:1.3.4-17.x86_64", "product": { "name": "krb5-server-0:1.3.4-17.x86_64", "product_id": "krb5-server-0:1.3.4-17.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.3.4-17?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.x86_64", "product": { "name": "krb5-libs-0:1.3.4-17.x86_64", "product_id": "krb5-libs-0:1.3.4-17.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.3.4-17.x86_64", "product": { "name": "krb5-workstation-0:1.3.4-17.x86_64", "product_id": "krb5-workstation-0:1.3.4-17.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.3.4-17?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-devel-0:1.3.4-17.x86_64", "product": { "name": "krb5-devel-0:1.3.4-17.x86_64", "product_id": "krb5-devel-0:1.3.4-17.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.3.4-17?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "krb5-0:1.3.4-17.src", "product": { "name": "krb5-0:1.3.4-17.src", "product_id": "krb5-0:1.3.4-17.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5@1.3.4-17?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.ppc64", "product": { "name": "krb5-debuginfo-0:1.3.4-17.ppc64", "product_id": "krb5-debuginfo-0:1.3.4-17.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=ppc64" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.ppc64", "product": { "name": "krb5-libs-0:1.3.4-17.ppc64", "product_id": "krb5-libs-0:1.3.4-17.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.ppc", "product": { "name": "krb5-debuginfo-0:1.3.4-17.ppc", "product_id": "krb5-debuginfo-0:1.3.4-17.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=ppc" } } }, { "category": "product_version", "name": "krb5-server-0:1.3.4-17.ppc", "product": { "name": "krb5-server-0:1.3.4-17.ppc", "product_id": "krb5-server-0:1.3.4-17.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.3.4-17?arch=ppc" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.ppc", "product": { "name": "krb5-libs-0:1.3.4-17.ppc", "product_id": "krb5-libs-0:1.3.4-17.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=ppc" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.3.4-17.ppc", "product": { "name": "krb5-workstation-0:1.3.4-17.ppc", "product_id": "krb5-workstation-0:1.3.4-17.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.3.4-17?arch=ppc" } } }, { "category": "product_version", "name": "krb5-devel-0:1.3.4-17.ppc", "product": { "name": "krb5-devel-0:1.3.4-17.ppc", "product_id": "krb5-devel-0:1.3.4-17.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.3.4-17?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.s390x", "product": { "name": "krb5-debuginfo-0:1.3.4-17.s390x", "product_id": "krb5-debuginfo-0:1.3.4-17.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=s390x" } } }, { "category": "product_version", "name": "krb5-server-0:1.3.4-17.s390x", "product": { "name": "krb5-server-0:1.3.4-17.s390x", "product_id": "krb5-server-0:1.3.4-17.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.3.4-17?arch=s390x" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.s390x", "product": { "name": "krb5-libs-0:1.3.4-17.s390x", "product_id": "krb5-libs-0:1.3.4-17.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=s390x" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.3.4-17.s390x", "product": { "name": "krb5-workstation-0:1.3.4-17.s390x", "product_id": "krb5-workstation-0:1.3.4-17.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.3.4-17?arch=s390x" } } }, { "category": "product_version", "name": "krb5-devel-0:1.3.4-17.s390x", "product": { "name": "krb5-devel-0:1.3.4-17.s390x", "product_id": "krb5-devel-0:1.3.4-17.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.3.4-17?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "krb5-debuginfo-0:1.3.4-17.s390", "product": { "name": "krb5-debuginfo-0:1.3.4-17.s390", "product_id": "krb5-debuginfo-0:1.3.4-17.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.3.4-17?arch=s390" } } }, { "category": "product_version", "name": "krb5-libs-0:1.3.4-17.s390", "product": { "name": "krb5-libs-0:1.3.4-17.s390", "product_id": "krb5-libs-0:1.3.4-17.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.3.4-17?arch=s390" } } }, { "category": "product_version", "name": "krb5-server-0:1.3.4-17.s390", "product": { "name": "krb5-server-0:1.3.4-17.s390", "product_id": "krb5-server-0:1.3.4-17.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.3.4-17?arch=s390" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.3.4-17.s390", "product": { "name": "krb5-workstation-0:1.3.4-17.s390", "product_id": "krb5-workstation-0:1.3.4-17.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.3.4-17?arch=s390" } } }, { "category": "product_version", "name": "krb5-devel-0:1.3.4-17.s390", "product": { "name": "krb5-devel-0:1.3.4-17.s390", "product_id": "krb5-devel-0:1.3.4-17.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.3.4-17?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.3.4-17.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-0:1.3.4-17.src" }, "product_reference": "krb5-0:1.3.4-17.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.i386" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.ia64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.ppc" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.ppc64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.s390" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.s390x" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-debuginfo-0:1.3.4-17.x86_64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-devel-0:1.3.4-17.i386" }, "product_reference": "krb5-devel-0:1.3.4-17.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-devel-0:1.3.4-17.ia64" }, "product_reference": "krb5-devel-0:1.3.4-17.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-devel-0:1.3.4-17.ppc" }, "product_reference": "krb5-devel-0:1.3.4-17.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-devel-0:1.3.4-17.s390" }, "product_reference": "krb5-devel-0:1.3.4-17.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-devel-0:1.3.4-17.s390x" }, "product_reference": "krb5-devel-0:1.3.4-17.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-devel-0:1.3.4-17.x86_64" }, "product_reference": "krb5-devel-0:1.3.4-17.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.i386" }, "product_reference": "krb5-libs-0:1.3.4-17.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.ia64" }, "product_reference": "krb5-libs-0:1.3.4-17.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.ppc" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.ppc64" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.s390" }, "product_reference": "krb5-libs-0:1.3.4-17.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.s390x" }, "product_reference": "krb5-libs-0:1.3.4-17.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-libs-0:1.3.4-17.x86_64" }, "product_reference": "krb5-libs-0:1.3.4-17.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-server-0:1.3.4-17.i386" }, "product_reference": "krb5-server-0:1.3.4-17.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-server-0:1.3.4-17.ia64" }, "product_reference": "krb5-server-0:1.3.4-17.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-server-0:1.3.4-17.ppc" }, "product_reference": "krb5-server-0:1.3.4-17.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-server-0:1.3.4-17.s390" }, "product_reference": "krb5-server-0:1.3.4-17.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-server-0:1.3.4-17.s390x" }, "product_reference": "krb5-server-0:1.3.4-17.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-server-0:1.3.4-17.x86_64" }, "product_reference": "krb5-server-0:1.3.4-17.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-workstation-0:1.3.4-17.i386" }, "product_reference": "krb5-workstation-0:1.3.4-17.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-workstation-0:1.3.4-17.ia64" }, "product_reference": "krb5-workstation-0:1.3.4-17.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-workstation-0:1.3.4-17.ppc" }, "product_reference": "krb5-workstation-0:1.3.4-17.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-workstation-0:1.3.4-17.s390" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-workstation-0:1.3.4-17.s390x" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:krb5-workstation-0:1.3.4-17.x86_64" }, "product_reference": "krb5-workstation-0:1.3.4-17.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.3.4-17.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-0:1.3.4-17.src" }, "product_reference": "krb5-0:1.3.4-17.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.i386" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.s390" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-devel-0:1.3.4-17.i386" }, "product_reference": "krb5-devel-0:1.3.4-17.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-devel-0:1.3.4-17.ia64" }, "product_reference": "krb5-devel-0:1.3.4-17.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-devel-0:1.3.4-17.ppc" }, "product_reference": "krb5-devel-0:1.3.4-17.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-devel-0:1.3.4-17.s390" }, "product_reference": "krb5-devel-0:1.3.4-17.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-devel-0:1.3.4-17.s390x" }, "product_reference": "krb5-devel-0:1.3.4-17.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-devel-0:1.3.4-17.x86_64" }, "product_reference": "krb5-devel-0:1.3.4-17.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.i386" }, "product_reference": "krb5-libs-0:1.3.4-17.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.ia64" }, "product_reference": "krb5-libs-0:1.3.4-17.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.ppc" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.ppc64" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.s390" }, "product_reference": "krb5-libs-0:1.3.4-17.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.s390x" }, "product_reference": "krb5-libs-0:1.3.4-17.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-libs-0:1.3.4-17.x86_64" }, "product_reference": "krb5-libs-0:1.3.4-17.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-server-0:1.3.4-17.i386" }, "product_reference": "krb5-server-0:1.3.4-17.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-server-0:1.3.4-17.ia64" }, "product_reference": "krb5-server-0:1.3.4-17.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-server-0:1.3.4-17.ppc" }, "product_reference": "krb5-server-0:1.3.4-17.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-server-0:1.3.4-17.s390" }, "product_reference": "krb5-server-0:1.3.4-17.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-server-0:1.3.4-17.s390x" }, "product_reference": "krb5-server-0:1.3.4-17.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-server-0:1.3.4-17.x86_64" }, "product_reference": "krb5-server-0:1.3.4-17.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-workstation-0:1.3.4-17.i386" }, "product_reference": "krb5-workstation-0:1.3.4-17.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-workstation-0:1.3.4-17.ia64" }, "product_reference": "krb5-workstation-0:1.3.4-17.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-workstation-0:1.3.4-17.ppc" }, "product_reference": "krb5-workstation-0:1.3.4-17.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-workstation-0:1.3.4-17.s390" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-workstation-0:1.3.4-17.s390x" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:krb5-workstation-0:1.3.4-17.x86_64" }, "product_reference": "krb5-workstation-0:1.3.4-17.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.3.4-17.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-0:1.3.4-17.src" }, "product_reference": "krb5-0:1.3.4-17.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.i386" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.ia64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.ppc" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.ppc64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.s390" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.s390x" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-debuginfo-0:1.3.4-17.x86_64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-devel-0:1.3.4-17.i386" }, "product_reference": "krb5-devel-0:1.3.4-17.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-devel-0:1.3.4-17.ia64" }, "product_reference": "krb5-devel-0:1.3.4-17.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-devel-0:1.3.4-17.ppc" }, "product_reference": "krb5-devel-0:1.3.4-17.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-devel-0:1.3.4-17.s390" }, "product_reference": "krb5-devel-0:1.3.4-17.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-devel-0:1.3.4-17.s390x" }, "product_reference": "krb5-devel-0:1.3.4-17.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-devel-0:1.3.4-17.x86_64" }, "product_reference": "krb5-devel-0:1.3.4-17.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.i386" }, "product_reference": "krb5-libs-0:1.3.4-17.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.ia64" }, "product_reference": "krb5-libs-0:1.3.4-17.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.ppc" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.ppc64" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.s390" }, "product_reference": "krb5-libs-0:1.3.4-17.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.s390x" }, "product_reference": "krb5-libs-0:1.3.4-17.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-libs-0:1.3.4-17.x86_64" }, "product_reference": "krb5-libs-0:1.3.4-17.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-server-0:1.3.4-17.i386" }, "product_reference": "krb5-server-0:1.3.4-17.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-server-0:1.3.4-17.ia64" }, "product_reference": "krb5-server-0:1.3.4-17.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-server-0:1.3.4-17.ppc" }, "product_reference": "krb5-server-0:1.3.4-17.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-server-0:1.3.4-17.s390" }, "product_reference": "krb5-server-0:1.3.4-17.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-server-0:1.3.4-17.s390x" }, "product_reference": "krb5-server-0:1.3.4-17.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-server-0:1.3.4-17.x86_64" }, "product_reference": "krb5-server-0:1.3.4-17.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-workstation-0:1.3.4-17.i386" }, "product_reference": "krb5-workstation-0:1.3.4-17.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-workstation-0:1.3.4-17.ia64" }, "product_reference": "krb5-workstation-0:1.3.4-17.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-workstation-0:1.3.4-17.ppc" }, "product_reference": "krb5-workstation-0:1.3.4-17.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-workstation-0:1.3.4-17.s390" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-workstation-0:1.3.4-17.s390x" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:krb5-workstation-0:1.3.4-17.x86_64" }, "product_reference": "krb5-workstation-0:1.3.4-17.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.3.4-17.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-0:1.3.4-17.src" }, "product_reference": "krb5-0:1.3.4-17.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.i386" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.ia64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.ppc" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.ppc64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.s390" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.s390x" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-debuginfo-0:1.3.4-17.x86_64" }, "product_reference": "krb5-debuginfo-0:1.3.4-17.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-devel-0:1.3.4-17.i386" }, "product_reference": "krb5-devel-0:1.3.4-17.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-devel-0:1.3.4-17.ia64" }, "product_reference": "krb5-devel-0:1.3.4-17.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-devel-0:1.3.4-17.ppc" }, "product_reference": "krb5-devel-0:1.3.4-17.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-devel-0:1.3.4-17.s390" }, "product_reference": "krb5-devel-0:1.3.4-17.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-devel-0:1.3.4-17.s390x" }, "product_reference": "krb5-devel-0:1.3.4-17.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-devel-0:1.3.4-17.x86_64" }, "product_reference": "krb5-devel-0:1.3.4-17.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.i386" }, "product_reference": "krb5-libs-0:1.3.4-17.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.ia64" }, "product_reference": "krb5-libs-0:1.3.4-17.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.ppc" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.ppc64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.ppc64" }, "product_reference": "krb5-libs-0:1.3.4-17.ppc64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.s390" }, "product_reference": "krb5-libs-0:1.3.4-17.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.s390x" }, "product_reference": "krb5-libs-0:1.3.4-17.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-libs-0:1.3.4-17.x86_64" }, "product_reference": "krb5-libs-0:1.3.4-17.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-server-0:1.3.4-17.i386" }, "product_reference": "krb5-server-0:1.3.4-17.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-server-0:1.3.4-17.ia64" }, "product_reference": "krb5-server-0:1.3.4-17.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-server-0:1.3.4-17.ppc" }, "product_reference": "krb5-server-0:1.3.4-17.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-server-0:1.3.4-17.s390" }, "product_reference": "krb5-server-0:1.3.4-17.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-server-0:1.3.4-17.s390x" }, "product_reference": "krb5-server-0:1.3.4-17.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-server-0:1.3.4-17.x86_64" }, "product_reference": "krb5-server-0:1.3.4-17.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-workstation-0:1.3.4-17.i386" }, "product_reference": "krb5-workstation-0:1.3.4-17.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-workstation-0:1.3.4-17.ia64" }, "product_reference": "krb5-workstation-0:1.3.4-17.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-workstation-0:1.3.4-17.ppc" }, "product_reference": "krb5-workstation-0:1.3.4-17.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-workstation-0:1.3.4-17.s390" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-workstation-0:1.3.4-17.s390x" }, "product_reference": "krb5-workstation-0:1.3.4-17.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.3.4-17.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:krb5-workstation-0:1.3.4-17.x86_64" }, "product_reference": "krb5-workstation-0:1.3.4-17.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:15:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:567" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" }, { "acknowledgments": [ { "names": [ "the MIT Kerberos project", "Daniel Wachdorf" ] } ], "cve": "CVE-2005-1174", "discovery_date": "2005-04-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617613" } ], "notes": [ { "category": "description", "text": "MIT Kerberos 5 (krb5) 1.3 through 1.4.1 Key Distribution Center (KDC) allows remote attackers to cause a denial of service (application crash) via a certain valid TCP connection that causes a free of unallocated memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1174" }, { "category": "external", "summary": "RHBZ#1617613", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617613" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1174", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1174" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1174", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1174" } ], "release_date": "2005-07-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:15:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:567" } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "security flaw" }, { "acknowledgments": [ { "names": [ "the MIT Kerberos project", "Daniel Wachdorf" ] } ], "cve": "CVE-2005-1175", "discovery_date": "2005-04-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617614" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain valid TCP or UDP request.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1175" }, { "category": "external", "summary": "RHBZ#1617614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617614" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1175", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1175" } ], "release_date": "2005-07-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:15:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:567" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "security flaw" }, { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2005-1689", "discovery_date": "2005-05-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617659" } ], "notes": [ { "category": "description", "text": "Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1689" }, { "category": "external", "summary": "RHBZ#1617659", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617659" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1689", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1689" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1689", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1689" } ], "release_date": "2005-07-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:15:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "4AS:krb5-0:1.3.4-17.src", "4AS:krb5-debuginfo-0:1.3.4-17.i386", "4AS:krb5-debuginfo-0:1.3.4-17.ia64", "4AS:krb5-debuginfo-0:1.3.4-17.ppc", "4AS:krb5-debuginfo-0:1.3.4-17.ppc64", "4AS:krb5-debuginfo-0:1.3.4-17.s390", "4AS:krb5-debuginfo-0:1.3.4-17.s390x", "4AS:krb5-debuginfo-0:1.3.4-17.x86_64", "4AS:krb5-devel-0:1.3.4-17.i386", "4AS:krb5-devel-0:1.3.4-17.ia64", "4AS:krb5-devel-0:1.3.4-17.ppc", "4AS:krb5-devel-0:1.3.4-17.s390", "4AS:krb5-devel-0:1.3.4-17.s390x", "4AS:krb5-devel-0:1.3.4-17.x86_64", "4AS:krb5-libs-0:1.3.4-17.i386", "4AS:krb5-libs-0:1.3.4-17.ia64", "4AS:krb5-libs-0:1.3.4-17.ppc", "4AS:krb5-libs-0:1.3.4-17.ppc64", "4AS:krb5-libs-0:1.3.4-17.s390", "4AS:krb5-libs-0:1.3.4-17.s390x", "4AS:krb5-libs-0:1.3.4-17.x86_64", "4AS:krb5-server-0:1.3.4-17.i386", "4AS:krb5-server-0:1.3.4-17.ia64", "4AS:krb5-server-0:1.3.4-17.ppc", "4AS:krb5-server-0:1.3.4-17.s390", "4AS:krb5-server-0:1.3.4-17.s390x", "4AS:krb5-server-0:1.3.4-17.x86_64", "4AS:krb5-workstation-0:1.3.4-17.i386", "4AS:krb5-workstation-0:1.3.4-17.ia64", "4AS:krb5-workstation-0:1.3.4-17.ppc", "4AS:krb5-workstation-0:1.3.4-17.s390", "4AS:krb5-workstation-0:1.3.4-17.s390x", "4AS:krb5-workstation-0:1.3.4-17.x86_64", "4Desktop:krb5-0:1.3.4-17.src", "4Desktop:krb5-debuginfo-0:1.3.4-17.i386", "4Desktop:krb5-debuginfo-0:1.3.4-17.ia64", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc", "4Desktop:krb5-debuginfo-0:1.3.4-17.ppc64", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390", "4Desktop:krb5-debuginfo-0:1.3.4-17.s390x", "4Desktop:krb5-debuginfo-0:1.3.4-17.x86_64", "4Desktop:krb5-devel-0:1.3.4-17.i386", "4Desktop:krb5-devel-0:1.3.4-17.ia64", "4Desktop:krb5-devel-0:1.3.4-17.ppc", "4Desktop:krb5-devel-0:1.3.4-17.s390", "4Desktop:krb5-devel-0:1.3.4-17.s390x", "4Desktop:krb5-devel-0:1.3.4-17.x86_64", "4Desktop:krb5-libs-0:1.3.4-17.i386", "4Desktop:krb5-libs-0:1.3.4-17.ia64", "4Desktop:krb5-libs-0:1.3.4-17.ppc", "4Desktop:krb5-libs-0:1.3.4-17.ppc64", "4Desktop:krb5-libs-0:1.3.4-17.s390", "4Desktop:krb5-libs-0:1.3.4-17.s390x", "4Desktop:krb5-libs-0:1.3.4-17.x86_64", "4Desktop:krb5-server-0:1.3.4-17.i386", "4Desktop:krb5-server-0:1.3.4-17.ia64", "4Desktop:krb5-server-0:1.3.4-17.ppc", "4Desktop:krb5-server-0:1.3.4-17.s390", "4Desktop:krb5-server-0:1.3.4-17.s390x", "4Desktop:krb5-server-0:1.3.4-17.x86_64", "4Desktop:krb5-workstation-0:1.3.4-17.i386", "4Desktop:krb5-workstation-0:1.3.4-17.ia64", "4Desktop:krb5-workstation-0:1.3.4-17.ppc", "4Desktop:krb5-workstation-0:1.3.4-17.s390", "4Desktop:krb5-workstation-0:1.3.4-17.s390x", "4Desktop:krb5-workstation-0:1.3.4-17.x86_64", "4ES:krb5-0:1.3.4-17.src", "4ES:krb5-debuginfo-0:1.3.4-17.i386", "4ES:krb5-debuginfo-0:1.3.4-17.ia64", "4ES:krb5-debuginfo-0:1.3.4-17.ppc", "4ES:krb5-debuginfo-0:1.3.4-17.ppc64", "4ES:krb5-debuginfo-0:1.3.4-17.s390", "4ES:krb5-debuginfo-0:1.3.4-17.s390x", "4ES:krb5-debuginfo-0:1.3.4-17.x86_64", "4ES:krb5-devel-0:1.3.4-17.i386", "4ES:krb5-devel-0:1.3.4-17.ia64", "4ES:krb5-devel-0:1.3.4-17.ppc", "4ES:krb5-devel-0:1.3.4-17.s390", "4ES:krb5-devel-0:1.3.4-17.s390x", "4ES:krb5-devel-0:1.3.4-17.x86_64", "4ES:krb5-libs-0:1.3.4-17.i386", "4ES:krb5-libs-0:1.3.4-17.ia64", "4ES:krb5-libs-0:1.3.4-17.ppc", "4ES:krb5-libs-0:1.3.4-17.ppc64", "4ES:krb5-libs-0:1.3.4-17.s390", "4ES:krb5-libs-0:1.3.4-17.s390x", "4ES:krb5-libs-0:1.3.4-17.x86_64", "4ES:krb5-server-0:1.3.4-17.i386", "4ES:krb5-server-0:1.3.4-17.ia64", "4ES:krb5-server-0:1.3.4-17.ppc", "4ES:krb5-server-0:1.3.4-17.s390", "4ES:krb5-server-0:1.3.4-17.s390x", "4ES:krb5-server-0:1.3.4-17.x86_64", "4ES:krb5-workstation-0:1.3.4-17.i386", "4ES:krb5-workstation-0:1.3.4-17.ia64", "4ES:krb5-workstation-0:1.3.4-17.ppc", "4ES:krb5-workstation-0:1.3.4-17.s390", "4ES:krb5-workstation-0:1.3.4-17.s390x", "4ES:krb5-workstation-0:1.3.4-17.x86_64", "4WS:krb5-0:1.3.4-17.src", "4WS:krb5-debuginfo-0:1.3.4-17.i386", "4WS:krb5-debuginfo-0:1.3.4-17.ia64", "4WS:krb5-debuginfo-0:1.3.4-17.ppc", "4WS:krb5-debuginfo-0:1.3.4-17.ppc64", "4WS:krb5-debuginfo-0:1.3.4-17.s390", "4WS:krb5-debuginfo-0:1.3.4-17.s390x", "4WS:krb5-debuginfo-0:1.3.4-17.x86_64", "4WS:krb5-devel-0:1.3.4-17.i386", "4WS:krb5-devel-0:1.3.4-17.ia64", "4WS:krb5-devel-0:1.3.4-17.ppc", "4WS:krb5-devel-0:1.3.4-17.s390", "4WS:krb5-devel-0:1.3.4-17.s390x", "4WS:krb5-devel-0:1.3.4-17.x86_64", "4WS:krb5-libs-0:1.3.4-17.i386", "4WS:krb5-libs-0:1.3.4-17.ia64", "4WS:krb5-libs-0:1.3.4-17.ppc", "4WS:krb5-libs-0:1.3.4-17.ppc64", "4WS:krb5-libs-0:1.3.4-17.s390", "4WS:krb5-libs-0:1.3.4-17.s390x", "4WS:krb5-libs-0:1.3.4-17.x86_64", "4WS:krb5-server-0:1.3.4-17.i386", "4WS:krb5-server-0:1.3.4-17.ia64", "4WS:krb5-server-0:1.3.4-17.ppc", "4WS:krb5-server-0:1.3.4-17.s390", "4WS:krb5-server-0:1.3.4-17.s390x", "4WS:krb5-server-0:1.3.4-17.x86_64", "4WS:krb5-workstation-0:1.3.4-17.i386", "4WS:krb5-workstation-0:1.3.4-17.ia64", "4WS:krb5-workstation-0:1.3.4-17.ppc", "4WS:krb5-workstation-0:1.3.4-17.s390", "4WS:krb5-workstation-0:1.3.4-17.s390x", "4WS:krb5-workstation-0:1.3.4-17.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:567" } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "security flaw" } ] }
rhsa-2005_495
Vulnerability from csaf_redhat
Published
2005-06-13 12:23
Modified
2024-11-21 23:26
Summary
Red Hat Security Advisory: rsh security update
Notes
Topic
Updated rsh packages that fix a theoretical security issue are now available.
This update has been rated as having low security impact by the Red Hat
Security Response Team
Details
The rsh package contains a set of programs that allow users to run
commands on remote machines, login to other machines, and copy files
between machines, using the rsh, rlogin, and rcp commands. All three of
these commands use rhosts-style authentication.
The rcp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses rcp to copy files from a malicious server.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
All users of rsh should upgrade to these updated packages, which resolve
these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated rsh packages that fix a theoretical security issue are now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team", "title": "Topic" }, { "category": "general", "text": "The rsh package contains a set of programs that allow users to run\ncommands on remote machines, login to other machines, and copy files\nbetween machines, using the rsh, rlogin, and rcp commands. All three of\nthese commands use rhosts-style authentication.\n\nThe rcp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses rcp to copy files from a malicious server. \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0175 to this issue.\n\nAll users of rsh should upgrade to these updated packages, which resolve\nthese issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:495", "url": "https://access.redhat.com/errata/RHSA-2005:495" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "158916", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=158916" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_495.json" } ], "title": "Red Hat Security Advisory: rsh security update", "tracking": { "current_release_date": "2024-11-21T23:26:40+00:00", "generator": { "date": "2024-11-21T23:26:40+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:495", "initial_release_date": "2005-06-13T12:23:00+00:00", "revision_history": [ { "date": "2005-06-13T12:23:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-06-13T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:26:40+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "product": { "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as" } } }, { "category": "product_name", "name": "Red Hat Linux Advanced Workstation 2.1", "product": { "name": "Red Hat Linux Advanced Workstation 2.1", "product_id": "Red Hat Linux Advanced Workstation 2.1", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 2.1", "product": { "name": "Red Hat Enterprise Linux ES version 2.1", "product_id": "Red Hat Enterprise Linux ES version 2.1", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 2.1", "product": { "name": "Red Hat Enterprise Linux WS version 2.1", "product_id": "Red Hat Enterprise Linux WS version 2.1", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" } ], "category": "vendor", "name": "Red Hat" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "Red Hat Enterprise Linux ES version 2.1", "Red Hat Enterprise Linux WS version 2.1", "Red Hat Linux Advanced Workstation 2.1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-06-13T12:23:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.\n\nIf up2date fails to connect to Red Hat Network due to SSL\nCertificate Errors, you need to install a version of the\nup2date client with an updated certificate. The latest version of\nup2date is available from the Red Hat FTP site and may also be\ndownloaded directly from the RHN website:\n\nhttps://rhn.redhat.com/help/latest-up2date.pxt", "product_ids": [ "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "Red Hat Enterprise Linux ES version 2.1", "Red Hat Enterprise Linux WS version 2.1", "Red Hat Linux Advanced Workstation 2.1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:495" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" } ] }
rhsa-2005_481
Vulnerability from csaf_redhat
Published
2005-06-02 14:31
Modified
2024-11-21 23:26
Summary
Red Hat Security Advisory: openssh security update
Notes
Topic
Updated openssh packages that fix a potential security vulnerability and
various other bugs are now available for Red Hat Enterprise Linux 2.1.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Details
OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. SSH
replaces rlogin and rsh, and provides secure encrypted communications
between two untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over a secure channel. Public
key authentication can be used for "passwordless" access to servers.
The scp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses scp to copy files from a malicious server.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
These updated packages also correct the following bug:
On systems in which direct ssh access for the root user was disabled by
configuration (setting "PermitRootLogin no"), attempts to guess the root
password could be judged as sucessful or unsucessful by observing a delay.
Users of openssh should upgrade to these updated packages, which contain
backported patches to resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated openssh packages that fix a potential security vulnerability and\nvarious other bugs are now available for Red Hat Enterprise Linux 2.1.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.", "title": "Topic" }, { "category": "general", "text": "OpenSSH is OpenBSD\u0027s SSH (Secure SHell) protocol implementation. SSH\nreplaces rlogin and rsh, and provides secure encrypted communications\nbetween two untrusted hosts over an insecure network. X11 connections and\narbitrary TCP/IP ports can also be forwarded over a secure channel. Public\nkey authentication can be used for \"passwordless\" access to servers.\n\nThe scp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses scp to copy files from a malicious server.\nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0175 to this issue.\n\nThese updated packages also correct the following bug:\n\nOn systems in which direct ssh access for the root user was disabled by\nconfiguration (setting \"PermitRootLogin no\"), attempts to guess the root\npassword could be judged as sucessful or unsucessful by observing a delay.\n\nUsers of openssh should upgrade to these updated packages, which contain\nbackported patches to resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:481", "url": "https://access.redhat.com/errata/RHSA-2005:481" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "146881", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146881" }, { "category": "external", "summary": "146882", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146882" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_481.json" } ], "title": "Red Hat Security Advisory: openssh security update", "tracking": { "current_release_date": "2024-11-21T23:26:35+00:00", "generator": { "date": "2024-11-21T23:26:35+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:481", "initial_release_date": "2005-06-02T14:31:00+00:00", "revision_history": [ { "date": "2005-06-02T14:31:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-06-02T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:26:35+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "product": { "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as" } } }, { "category": "product_name", "name": "Red Hat Linux Advanced Workstation 2.1", "product": { "name": "Red Hat Linux Advanced Workstation 2.1", "product_id": "Red Hat Linux Advanced Workstation 2.1", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 2.1", "product": { "name": "Red Hat Enterprise Linux ES version 2.1", "product_id": "Red Hat Enterprise Linux ES version 2.1", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 2.1", "product": { "name": "Red Hat Enterprise Linux WS version 2.1", "product_id": "Red Hat Enterprise Linux WS version 2.1", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:2.1::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" } ], "category": "vendor", "name": "Red Hat" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "Red Hat Enterprise Linux ES version 2.1", "Red Hat Enterprise Linux WS version 2.1", "Red Hat Linux Advanced Workstation 2.1" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-06-02T14:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.\n\nIf up2date fails to connect to Red Hat Network due to SSL\nCertificate Errors, you need to install a version of the\nup2date client with an updated certificate. The latest version of\nup2date is available from the Red Hat FTP site and may also be\ndownloaded directly from the RHN website:\n\nhttps://rhn.redhat.com/help/latest-up2date.pxt", "product_ids": [ "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ", "Red Hat Enterprise Linux ES version 2.1", "Red Hat Enterprise Linux WS version 2.1", "Red Hat Linux Advanced Workstation 2.1" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:481" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" } ] }
rhsa-2005_074
Vulnerability from csaf_redhat
Published
2005-05-18 13:03
Modified
2024-11-21 23:26
Summary
Red Hat Security Advisory: rsh security update
Notes
Topic
Updated rsh packages that fix various bugs and a theoretical security issue
are now available.
This update has been rated as having low security impact by the Red Hat
Security Response Team
Details
The rsh package contains a set of programs that allow users to run
commands on remote machines, login to other machines, and copy files
between machines, using the rsh, rlogin, and rcp commands. All three of
these commands use rhosts-style authentication.
The rcp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses rcp to copy files from a malicious server.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
These updated packages also address the following bugs:
The rexec command failed with "Invalid Argument", because the code
used sigaction() as an unsupported signal.
The rlogind server reported "SIGCHLD set to SIG_IGN but calls wait()"
message to the system log because the original BSD code was ported
incorrectly to linux.
The rexecd server did not function on systems where client hostnames were
not in the DNS service, because server code called gethostbyaddr() for each
new connection.
The rcp command incorrectly used the "errno" variable and produced
erroneous error messages.
The rexecd command ignored settings in the /etc/security/limits file,
because the PAM session was incorrectly initialized.
The rexec command prompted for username and password regardless of the
~/.netrc configuration file contents. This updated package contains a patch
that no longer skips the ~/.netrc file.
All users of rsh should upgrade to these updated packages, which resolve
these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated rsh packages that fix various bugs and a theoretical security issue\nare now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team", "title": "Topic" }, { "category": "general", "text": "The rsh package contains a set of programs that allow users to run\ncommands on remote machines, login to other machines, and copy files\nbetween machines, using the rsh, rlogin, and rcp commands. All three of\nthese commands use rhosts-style authentication.\n\nThe rcp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses rcp to copy files from a malicious server. \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0175 to this issue.\n\nThese updated packages also address the following bugs:\n\nThe rexec command failed with \"Invalid Argument\", because the code\nused sigaction() as an unsupported signal.\n\nThe rlogind server reported \"SIGCHLD set to SIG_IGN but calls wait()\"\nmessage to the system log because the original BSD code was ported\nincorrectly to linux.\n\nThe rexecd server did not function on systems where client hostnames were\nnot in the DNS service, because server code called gethostbyaddr() for each\nnew connection.\n\nThe rcp command incorrectly used the \"errno\" variable and produced\nerroneous error messages.\n\nThe rexecd command ignored settings in the /etc/security/limits file,\nbecause the PAM session was incorrectly initialized.\n\nThe rexec command prompted for username and password regardless of the\n~/.netrc configuration file contents. This updated package contains a patch\nthat no longer skips the ~/.netrc file. \n\nAll users of rsh should upgrade to these updated packages, which resolve\nthese issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:074", "url": "https://access.redhat.com/errata/RHSA-2005:074" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "67361", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=67361" }, { "category": "external", "summary": "118630", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=118630" }, { "category": "external", "summary": "146435", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146435" }, { "category": "external", "summary": "146437", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146437" }, { "category": "external", "summary": "146464", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146464" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_074.json" } ], "title": "Red Hat Security Advisory: rsh security update", "tracking": { "current_release_date": "2024-11-21T23:26:23+00:00", "generator": { "date": "2024-11-21T23:26:23+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:074", "initial_release_date": "2005-05-18T13:03:00+00:00", "revision_history": [ { "date": "2005-05-18T13:03:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-05-18T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:26:23+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 3", "product": { "name": "Red Hat Enterprise Linux AS version 3", "product_id": "3AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::as" } } }, { "category": "product_name", "name": "Red Hat Desktop version 3", "product": { "name": "Red Hat Desktop version 3", "product_id": "3Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 3", "product": { "name": "Red Hat Enterprise Linux ES version 3", "product_id": "3ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 3", "product": { "name": "Red Hat Enterprise Linux WS version 3", "product_id": "3WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.ia64", "product": { "name": "rsh-0:0.17-17.6.ia64", "product_id": "rsh-0:0.17-17.6.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=ia64" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-17.6.ia64", "product": { "name": "rsh-server-0:0.17-17.6.ia64", "product_id": "rsh-server-0:0.17-17.6.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-17.6?arch=ia64" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-17.6.ia64", "product": { "name": "rsh-debuginfo-0:0.17-17.6.ia64", "product_id": "rsh-debuginfo-0:0.17-17.6.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-17.6?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.src", "product": { "name": "rsh-0:0.17-17.6.src", "product_id": "rsh-0:0.17-17.6.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.x86_64", "product": { "name": "rsh-0:0.17-17.6.x86_64", "product_id": "rsh-0:0.17-17.6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=x86_64" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-17.6.x86_64", "product": { "name": "rsh-server-0:0.17-17.6.x86_64", "product_id": "rsh-server-0:0.17-17.6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-17.6?arch=x86_64" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-17.6.x86_64", "product": { "name": "rsh-debuginfo-0:0.17-17.6.x86_64", "product_id": "rsh-debuginfo-0:0.17-17.6.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-17.6?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.i386", "product": { "name": "rsh-0:0.17-17.6.i386", "product_id": "rsh-0:0.17-17.6.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=i386" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-17.6.i386", "product": { "name": "rsh-server-0:0.17-17.6.i386", "product_id": "rsh-server-0:0.17-17.6.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-17.6?arch=i386" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-17.6.i386", "product": { "name": "rsh-debuginfo-0:0.17-17.6.i386", "product_id": "rsh-debuginfo-0:0.17-17.6.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-17.6?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.ppc", "product": { "name": "rsh-0:0.17-17.6.ppc", "product_id": "rsh-0:0.17-17.6.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=ppc" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-17.6.ppc", "product": { "name": "rsh-server-0:0.17-17.6.ppc", "product_id": "rsh-server-0:0.17-17.6.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-17.6?arch=ppc" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-17.6.ppc", "product": { "name": "rsh-debuginfo-0:0.17-17.6.ppc", "product_id": "rsh-debuginfo-0:0.17-17.6.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-17.6?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.s390x", "product": { "name": "rsh-0:0.17-17.6.s390x", "product_id": "rsh-0:0.17-17.6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=s390x" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-17.6.s390x", "product": { "name": "rsh-server-0:0.17-17.6.s390x", "product_id": "rsh-server-0:0.17-17.6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-17.6?arch=s390x" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-17.6.s390x", "product": { "name": "rsh-debuginfo-0:0.17-17.6.s390x", "product_id": "rsh-debuginfo-0:0.17-17.6.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-17.6?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-17.6.s390", "product": { "name": "rsh-0:0.17-17.6.s390", "product_id": "rsh-0:0.17-17.6.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-17.6?arch=s390" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-17.6.s390", "product": { "name": "rsh-server-0:0.17-17.6.s390", "product_id": "rsh-server-0:0.17-17.6.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-17.6?arch=s390" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-17.6.s390", "product": { "name": "rsh-debuginfo-0:0.17-17.6.s390", "product_id": "rsh-debuginfo-0:0.17-17.6.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-17.6?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.i386" }, "product_reference": "rsh-0:0.17-17.6.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.ia64" }, "product_reference": "rsh-0:0.17-17.6.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.ppc" }, "product_reference": "rsh-0:0.17-17.6.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.s390" }, "product_reference": "rsh-0:0.17-17.6.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.s390x" }, "product_reference": "rsh-0:0.17-17.6.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.src as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.src" }, "product_reference": "rsh-0:0.17-17.6.src", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-0:0.17-17.6.x86_64" }, "product_reference": "rsh-0:0.17-17.6.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-debuginfo-0:0.17-17.6.i386" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-debuginfo-0:0.17-17.6.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-debuginfo-0:0.17-17.6.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-debuginfo-0:0.17-17.6.s390" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-debuginfo-0:0.17-17.6.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-debuginfo-0:0.17-17.6.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-server-0:0.17-17.6.i386" }, "product_reference": "rsh-server-0:0.17-17.6.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-server-0:0.17-17.6.ia64" }, "product_reference": "rsh-server-0:0.17-17.6.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-server-0:0.17-17.6.ppc" }, "product_reference": "rsh-server-0:0.17-17.6.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-server-0:0.17-17.6.s390" }, "product_reference": "rsh-server-0:0.17-17.6.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-server-0:0.17-17.6.s390x" }, "product_reference": "rsh-server-0:0.17-17.6.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:rsh-server-0:0.17-17.6.x86_64" }, "product_reference": "rsh-server-0:0.17-17.6.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.i386" }, "product_reference": "rsh-0:0.17-17.6.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.ia64" }, "product_reference": "rsh-0:0.17-17.6.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.ppc" }, "product_reference": "rsh-0:0.17-17.6.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.s390" }, "product_reference": "rsh-0:0.17-17.6.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.s390x" }, "product_reference": "rsh-0:0.17-17.6.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.src as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.src" }, "product_reference": "rsh-0:0.17-17.6.src", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-0:0.17-17.6.x86_64" }, "product_reference": "rsh-0:0.17-17.6.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-debuginfo-0:0.17-17.6.i386" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-debuginfo-0:0.17-17.6.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-debuginfo-0:0.17-17.6.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-debuginfo-0:0.17-17.6.s390" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-debuginfo-0:0.17-17.6.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-debuginfo-0:0.17-17.6.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-server-0:0.17-17.6.i386" }, "product_reference": "rsh-server-0:0.17-17.6.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-server-0:0.17-17.6.ia64" }, "product_reference": "rsh-server-0:0.17-17.6.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-server-0:0.17-17.6.ppc" }, "product_reference": "rsh-server-0:0.17-17.6.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-server-0:0.17-17.6.s390" }, "product_reference": "rsh-server-0:0.17-17.6.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-server-0:0.17-17.6.s390x" }, "product_reference": "rsh-server-0:0.17-17.6.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:rsh-server-0:0.17-17.6.x86_64" }, "product_reference": "rsh-server-0:0.17-17.6.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.i386" }, "product_reference": "rsh-0:0.17-17.6.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.ia64" }, "product_reference": "rsh-0:0.17-17.6.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.ppc" }, "product_reference": "rsh-0:0.17-17.6.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.s390" }, "product_reference": "rsh-0:0.17-17.6.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.s390x" }, "product_reference": "rsh-0:0.17-17.6.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.src as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.src" }, "product_reference": "rsh-0:0.17-17.6.src", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-0:0.17-17.6.x86_64" }, "product_reference": "rsh-0:0.17-17.6.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-debuginfo-0:0.17-17.6.i386" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-debuginfo-0:0.17-17.6.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-debuginfo-0:0.17-17.6.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-debuginfo-0:0.17-17.6.s390" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-debuginfo-0:0.17-17.6.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-debuginfo-0:0.17-17.6.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-server-0:0.17-17.6.i386" }, "product_reference": "rsh-server-0:0.17-17.6.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-server-0:0.17-17.6.ia64" }, "product_reference": "rsh-server-0:0.17-17.6.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-server-0:0.17-17.6.ppc" }, "product_reference": "rsh-server-0:0.17-17.6.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-server-0:0.17-17.6.s390" }, "product_reference": "rsh-server-0:0.17-17.6.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-server-0:0.17-17.6.s390x" }, "product_reference": "rsh-server-0:0.17-17.6.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:rsh-server-0:0.17-17.6.x86_64" }, "product_reference": "rsh-server-0:0.17-17.6.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.i386" }, "product_reference": "rsh-0:0.17-17.6.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.ia64" }, "product_reference": "rsh-0:0.17-17.6.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.ppc" }, "product_reference": "rsh-0:0.17-17.6.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.s390" }, "product_reference": "rsh-0:0.17-17.6.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.s390x" }, "product_reference": "rsh-0:0.17-17.6.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.src as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.src" }, "product_reference": "rsh-0:0.17-17.6.src", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-0:0.17-17.6.x86_64" }, "product_reference": "rsh-0:0.17-17.6.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-debuginfo-0:0.17-17.6.i386" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-debuginfo-0:0.17-17.6.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-debuginfo-0:0.17-17.6.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-debuginfo-0:0.17-17.6.s390" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-debuginfo-0:0.17-17.6.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-debuginfo-0:0.17-17.6.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-17.6.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-server-0:0.17-17.6.i386" }, "product_reference": "rsh-server-0:0.17-17.6.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-server-0:0.17-17.6.ia64" }, "product_reference": "rsh-server-0:0.17-17.6.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-server-0:0.17-17.6.ppc" }, "product_reference": "rsh-server-0:0.17-17.6.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-server-0:0.17-17.6.s390" }, "product_reference": "rsh-server-0:0.17-17.6.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-server-0:0.17-17.6.s390x" }, "product_reference": "rsh-server-0:0.17-17.6.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-17.6.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:rsh-server-0:0.17-17.6.x86_64" }, "product_reference": "rsh-server-0:0.17-17.6.x86_64", "relates_to_product_reference": "3WS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "3AS:rsh-0:0.17-17.6.i386", "3AS:rsh-0:0.17-17.6.ia64", "3AS:rsh-0:0.17-17.6.ppc", "3AS:rsh-0:0.17-17.6.s390", "3AS:rsh-0:0.17-17.6.s390x", "3AS:rsh-0:0.17-17.6.src", "3AS:rsh-0:0.17-17.6.x86_64", "3AS:rsh-debuginfo-0:0.17-17.6.i386", "3AS:rsh-debuginfo-0:0.17-17.6.ia64", "3AS:rsh-debuginfo-0:0.17-17.6.ppc", "3AS:rsh-debuginfo-0:0.17-17.6.s390", "3AS:rsh-debuginfo-0:0.17-17.6.s390x", "3AS:rsh-debuginfo-0:0.17-17.6.x86_64", "3AS:rsh-server-0:0.17-17.6.i386", "3AS:rsh-server-0:0.17-17.6.ia64", "3AS:rsh-server-0:0.17-17.6.ppc", "3AS:rsh-server-0:0.17-17.6.s390", "3AS:rsh-server-0:0.17-17.6.s390x", "3AS:rsh-server-0:0.17-17.6.x86_64", "3Desktop:rsh-0:0.17-17.6.i386", "3Desktop:rsh-0:0.17-17.6.ia64", "3Desktop:rsh-0:0.17-17.6.ppc", "3Desktop:rsh-0:0.17-17.6.s390", "3Desktop:rsh-0:0.17-17.6.s390x", "3Desktop:rsh-0:0.17-17.6.src", "3Desktop:rsh-0:0.17-17.6.x86_64", "3Desktop:rsh-debuginfo-0:0.17-17.6.i386", "3Desktop:rsh-debuginfo-0:0.17-17.6.ia64", "3Desktop:rsh-debuginfo-0:0.17-17.6.ppc", "3Desktop:rsh-debuginfo-0:0.17-17.6.s390", "3Desktop:rsh-debuginfo-0:0.17-17.6.s390x", "3Desktop:rsh-debuginfo-0:0.17-17.6.x86_64", "3Desktop:rsh-server-0:0.17-17.6.i386", "3Desktop:rsh-server-0:0.17-17.6.ia64", "3Desktop:rsh-server-0:0.17-17.6.ppc", "3Desktop:rsh-server-0:0.17-17.6.s390", "3Desktop:rsh-server-0:0.17-17.6.s390x", "3Desktop:rsh-server-0:0.17-17.6.x86_64", "3ES:rsh-0:0.17-17.6.i386", "3ES:rsh-0:0.17-17.6.ia64", "3ES:rsh-0:0.17-17.6.ppc", "3ES:rsh-0:0.17-17.6.s390", "3ES:rsh-0:0.17-17.6.s390x", "3ES:rsh-0:0.17-17.6.src", "3ES:rsh-0:0.17-17.6.x86_64", "3ES:rsh-debuginfo-0:0.17-17.6.i386", "3ES:rsh-debuginfo-0:0.17-17.6.ia64", "3ES:rsh-debuginfo-0:0.17-17.6.ppc", "3ES:rsh-debuginfo-0:0.17-17.6.s390", "3ES:rsh-debuginfo-0:0.17-17.6.s390x", "3ES:rsh-debuginfo-0:0.17-17.6.x86_64", "3ES:rsh-server-0:0.17-17.6.i386", "3ES:rsh-server-0:0.17-17.6.ia64", "3ES:rsh-server-0:0.17-17.6.ppc", "3ES:rsh-server-0:0.17-17.6.s390", "3ES:rsh-server-0:0.17-17.6.s390x", "3ES:rsh-server-0:0.17-17.6.x86_64", "3WS:rsh-0:0.17-17.6.i386", "3WS:rsh-0:0.17-17.6.ia64", "3WS:rsh-0:0.17-17.6.ppc", "3WS:rsh-0:0.17-17.6.s390", "3WS:rsh-0:0.17-17.6.s390x", "3WS:rsh-0:0.17-17.6.src", "3WS:rsh-0:0.17-17.6.x86_64", "3WS:rsh-debuginfo-0:0.17-17.6.i386", "3WS:rsh-debuginfo-0:0.17-17.6.ia64", "3WS:rsh-debuginfo-0:0.17-17.6.ppc", "3WS:rsh-debuginfo-0:0.17-17.6.s390", "3WS:rsh-debuginfo-0:0.17-17.6.s390x", "3WS:rsh-debuginfo-0:0.17-17.6.x86_64", "3WS:rsh-server-0:0.17-17.6.i386", "3WS:rsh-server-0:0.17-17.6.ia64", "3WS:rsh-server-0:0.17-17.6.ppc", "3WS:rsh-server-0:0.17-17.6.s390", "3WS:rsh-server-0:0.17-17.6.s390x", "3WS:rsh-server-0:0.17-17.6.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-05-18T13:03:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.\n\nIf up2date fails to connect to Red Hat Network due to SSL\nCertificate Errors, you need to install a version of the\nup2date client with an updated certificate. The latest version of\nup2date is available from the Red Hat FTP site and may also be\ndownloaded directly from the RHN website:\n\nhttps://rhn.redhat.com/help/latest-up2date.pxt", "product_ids": [ "3AS:rsh-0:0.17-17.6.i386", "3AS:rsh-0:0.17-17.6.ia64", "3AS:rsh-0:0.17-17.6.ppc", "3AS:rsh-0:0.17-17.6.s390", "3AS:rsh-0:0.17-17.6.s390x", "3AS:rsh-0:0.17-17.6.src", "3AS:rsh-0:0.17-17.6.x86_64", "3AS:rsh-debuginfo-0:0.17-17.6.i386", "3AS:rsh-debuginfo-0:0.17-17.6.ia64", "3AS:rsh-debuginfo-0:0.17-17.6.ppc", "3AS:rsh-debuginfo-0:0.17-17.6.s390", "3AS:rsh-debuginfo-0:0.17-17.6.s390x", "3AS:rsh-debuginfo-0:0.17-17.6.x86_64", "3AS:rsh-server-0:0.17-17.6.i386", "3AS:rsh-server-0:0.17-17.6.ia64", "3AS:rsh-server-0:0.17-17.6.ppc", "3AS:rsh-server-0:0.17-17.6.s390", "3AS:rsh-server-0:0.17-17.6.s390x", "3AS:rsh-server-0:0.17-17.6.x86_64", "3Desktop:rsh-0:0.17-17.6.i386", "3Desktop:rsh-0:0.17-17.6.ia64", "3Desktop:rsh-0:0.17-17.6.ppc", "3Desktop:rsh-0:0.17-17.6.s390", "3Desktop:rsh-0:0.17-17.6.s390x", "3Desktop:rsh-0:0.17-17.6.src", "3Desktop:rsh-0:0.17-17.6.x86_64", "3Desktop:rsh-debuginfo-0:0.17-17.6.i386", "3Desktop:rsh-debuginfo-0:0.17-17.6.ia64", "3Desktop:rsh-debuginfo-0:0.17-17.6.ppc", "3Desktop:rsh-debuginfo-0:0.17-17.6.s390", "3Desktop:rsh-debuginfo-0:0.17-17.6.s390x", "3Desktop:rsh-debuginfo-0:0.17-17.6.x86_64", "3Desktop:rsh-server-0:0.17-17.6.i386", "3Desktop:rsh-server-0:0.17-17.6.ia64", "3Desktop:rsh-server-0:0.17-17.6.ppc", "3Desktop:rsh-server-0:0.17-17.6.s390", "3Desktop:rsh-server-0:0.17-17.6.s390x", "3Desktop:rsh-server-0:0.17-17.6.x86_64", "3ES:rsh-0:0.17-17.6.i386", "3ES:rsh-0:0.17-17.6.ia64", "3ES:rsh-0:0.17-17.6.ppc", "3ES:rsh-0:0.17-17.6.s390", "3ES:rsh-0:0.17-17.6.s390x", "3ES:rsh-0:0.17-17.6.src", "3ES:rsh-0:0.17-17.6.x86_64", "3ES:rsh-debuginfo-0:0.17-17.6.i386", "3ES:rsh-debuginfo-0:0.17-17.6.ia64", "3ES:rsh-debuginfo-0:0.17-17.6.ppc", "3ES:rsh-debuginfo-0:0.17-17.6.s390", "3ES:rsh-debuginfo-0:0.17-17.6.s390x", "3ES:rsh-debuginfo-0:0.17-17.6.x86_64", "3ES:rsh-server-0:0.17-17.6.i386", "3ES:rsh-server-0:0.17-17.6.ia64", "3ES:rsh-server-0:0.17-17.6.ppc", "3ES:rsh-server-0:0.17-17.6.s390", "3ES:rsh-server-0:0.17-17.6.s390x", "3ES:rsh-server-0:0.17-17.6.x86_64", "3WS:rsh-0:0.17-17.6.i386", "3WS:rsh-0:0.17-17.6.ia64", "3WS:rsh-0:0.17-17.6.ppc", "3WS:rsh-0:0.17-17.6.s390", "3WS:rsh-0:0.17-17.6.s390x", "3WS:rsh-0:0.17-17.6.src", "3WS:rsh-0:0.17-17.6.x86_64", "3WS:rsh-debuginfo-0:0.17-17.6.i386", "3WS:rsh-debuginfo-0:0.17-17.6.ia64", "3WS:rsh-debuginfo-0:0.17-17.6.ppc", "3WS:rsh-debuginfo-0:0.17-17.6.s390", "3WS:rsh-debuginfo-0:0.17-17.6.s390x", "3WS:rsh-debuginfo-0:0.17-17.6.x86_64", "3WS:rsh-server-0:0.17-17.6.i386", "3WS:rsh-server-0:0.17-17.6.ia64", "3WS:rsh-server-0:0.17-17.6.ppc", "3WS:rsh-server-0:0.17-17.6.s390", "3WS:rsh-server-0:0.17-17.6.s390x", "3WS:rsh-server-0:0.17-17.6.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:074" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" } ] }
rhsa-2005_562
Vulnerability from csaf_redhat
Published
2005-07-12 18:12
Modified
2024-11-21 23:52
Summary
Red Hat Security Advisory: krb5 security update
Notes
Topic
Updated krb5 packages which fix multiple security issues are now available
for Red Hat Enterprise Linux 2.1 and 3.
This update has been rated as having critical security impact by the Red
Hat Security Response Team.
[Updated 26 Sep 2005]
krb5-server packages have been added to this advisory for Red Hat
Enterprise Linux 3 WS and Red Hat Enterprise Linux 3 Desktop.
Details
Kerberos is a networked authentication system which uses a trusted third
party (a KDC) to authenticate clients and servers to each other.
A double-free flaw was found in the krb5_recvauth() routine which may be
triggered by a remote unauthenticated attacker. Although no exploit is
currently known to exist, this issue could potentially be exploited to
allow arbitrary code execution on a Key Distribution Center (KDC). The
Common Vulnerabilities and Exposures project assigned the name
CAN-2005-1689 to this issue.
Daniel Wachdorf discovered a single byte heap overflow in the
krb5_unparse_name() function, part of krb5-libs. Sucessful exploitation of
this flaw would lead to a denial of service (crash). To trigger this flaw
an attacker would need to have control of a kerberos realm that shares a
cross-realm key with the target, making exploitation of this flaw unlikely.
(CAN-2005-1175).
Gaël Delalleau discovered an information disclosure issue in the way
some telnet clients handle messages from a server. An attacker could
construct a malicious telnet server that collects information from the
environment of any victim who connects to it using the Kerberos-aware
telnet client (CAN-2005-0488).
The rcp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses the Kerberos-aware rcp to copy files from a
malicious server (CAN-2004-0175).
All users of krb5 should update to these erratum packages which contain
backported patches to correct these issues. Red Hat would like to thank
the MIT Kerberos Development Team for their responsible disclosure of these
issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated krb5 packages which fix multiple security issues are now available\nfor Red Hat Enterprise Linux 2.1 and 3.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.\n\n[Updated 26 Sep 2005]\nkrb5-server packages have been added to this advisory for Red Hat\nEnterprise Linux 3 WS and Red Hat Enterprise Linux 3 Desktop.", "title": "Topic" }, { "category": "general", "text": "Kerberos is a networked authentication system which uses a trusted third\nparty (a KDC) to authenticate clients and servers to each other.\n\nA double-free flaw was found in the krb5_recvauth() routine which may be\ntriggered by a remote unauthenticated attacker. Although no exploit is\ncurrently known to exist, this issue could potentially be exploited to\nallow arbitrary code execution on a Key Distribution Center (KDC). The\nCommon Vulnerabilities and Exposures project assigned the name\nCAN-2005-1689 to this issue. \n\nDaniel Wachdorf discovered a single byte heap overflow in the\nkrb5_unparse_name() function, part of krb5-libs. Sucessful exploitation of\nthis flaw would lead to a denial of service (crash). To trigger this flaw\nan attacker would need to have control of a kerberos realm that shares a\ncross-realm key with the target, making exploitation of this flaw unlikely.\n(CAN-2005-1175). \n\nGa\u00ebl Delalleau discovered an information disclosure issue in the way\nsome telnet clients handle messages from a server. An attacker could\nconstruct a malicious telnet server that collects information from the\nenvironment of any victim who connects to it using the Kerberos-aware\ntelnet client (CAN-2005-0488).\n\nThe rcp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses the Kerberos-aware rcp to copy files from a\nmalicious server (CAN-2004-0175). \n\nAll users of krb5 should update to these erratum packages which contain\nbackported patches to correct these issues. Red Hat would like to thank\nthe MIT Kerberos Development Team for their responsible disclosure of these\nissues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:562", "url": "https://access.redhat.com/errata/RHSA-2005:562" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-003-recvauth.txt", "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-003-recvauth.txt" }, { "category": "external", "summary": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-002-kdc.txt", "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-002-kdc.txt" }, { "category": "external", "summary": "159304", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=159304" }, { "category": "external", "summary": "159753", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=159753" }, { "category": "external", "summary": "161471", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=161471" }, { "category": "external", "summary": "161611", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=161611" }, { "category": "external", "summary": "162255", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=162255" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_562.json" } ], "title": "Red Hat Security Advisory: krb5 security update", "tracking": { "current_release_date": "2024-11-21T23:52:34+00:00", "generator": { "date": "2024-11-21T23:52:34+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:562", "initial_release_date": "2005-07-12T18:12:00+00:00", "revision_history": [ { "date": "2005-07-12T18:12:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-07-12T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:52:34+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 3", "product": { "name": "Red Hat Enterprise Linux AS version 3", "product_id": "3AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::as" } } }, { "category": "product_name", "name": "Red Hat Desktop version 3", "product": { "name": "Red Hat Desktop version 3", "product_id": "3Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 3", "product": { "name": "Red Hat Enterprise Linux ES version 3", "product_id": "3ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 3", "product": { "name": "Red Hat Enterprise Linux WS version 3", "product_id": "3WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "krb5-devel-0:1.2.7-47.ia64", "product": { "name": "krb5-devel-0:1.2.7-47.ia64", "product_id": "krb5-devel-0:1.2.7-47.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.2.7-47?arch=ia64" } } }, { "category": "product_version", "name": "krb5-server-0:1.2.7-47.ia64", "product": { "name": "krb5-server-0:1.2.7-47.ia64", "product_id": "krb5-server-0:1.2.7-47.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.2.7-47?arch=ia64" } } }, { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.ia64", "product": { "name": "krb5-libs-0:1.2.7-47.ia64", "product_id": "krb5-libs-0:1.2.7-47.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=ia64" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.2.7-47.ia64", "product": { "name": "krb5-workstation-0:1.2.7-47.ia64", "product_id": "krb5-workstation-0:1.2.7-47.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.2.7-47?arch=ia64" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.ia64", "product": { "name": "krb5-debuginfo-0:1.2.7-47.ia64", "product_id": "krb5-debuginfo-0:1.2.7-47.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.i386", "product": { "name": "krb5-libs-0:1.2.7-47.i386", "product_id": "krb5-libs-0:1.2.7-47.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=i386" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.i386", "product": { "name": "krb5-debuginfo-0:1.2.7-47.i386", "product_id": "krb5-debuginfo-0:1.2.7-47.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=i386" } } }, { "category": "product_version", "name": "krb5-devel-0:1.2.7-47.i386", "product": { "name": "krb5-devel-0:1.2.7-47.i386", "product_id": "krb5-devel-0:1.2.7-47.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.2.7-47?arch=i386" } } }, { "category": "product_version", "name": "krb5-server-0:1.2.7-47.i386", "product": { "name": "krb5-server-0:1.2.7-47.i386", "product_id": "krb5-server-0:1.2.7-47.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.2.7-47?arch=i386" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.2.7-47.i386", "product": { "name": "krb5-workstation-0:1.2.7-47.i386", "product_id": "krb5-workstation-0:1.2.7-47.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.2.7-47?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "krb5-devel-0:1.2.7-47.x86_64", "product": { "name": "krb5-devel-0:1.2.7-47.x86_64", "product_id": "krb5-devel-0:1.2.7-47.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.2.7-47?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-server-0:1.2.7-47.x86_64", "product": { "name": "krb5-server-0:1.2.7-47.x86_64", "product_id": "krb5-server-0:1.2.7-47.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.2.7-47?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.x86_64", "product": { "name": "krb5-libs-0:1.2.7-47.x86_64", "product_id": "krb5-libs-0:1.2.7-47.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.2.7-47.x86_64", "product": { "name": "krb5-workstation-0:1.2.7-47.x86_64", "product_id": "krb5-workstation-0:1.2.7-47.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.2.7-47?arch=x86_64" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.x86_64", "product": { "name": "krb5-debuginfo-0:1.2.7-47.x86_64", "product_id": "krb5-debuginfo-0:1.2.7-47.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "krb5-0:1.2.7-47.src", "product": { "name": "krb5-0:1.2.7-47.src", "product_id": "krb5-0:1.2.7-47.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5@1.2.7-47?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "krb5-devel-0:1.2.7-47.ppc", "product": { "name": "krb5-devel-0:1.2.7-47.ppc", "product_id": "krb5-devel-0:1.2.7-47.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.2.7-47?arch=ppc" } } }, { "category": "product_version", "name": "krb5-server-0:1.2.7-47.ppc", "product": { "name": "krb5-server-0:1.2.7-47.ppc", "product_id": "krb5-server-0:1.2.7-47.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.2.7-47?arch=ppc" } } }, { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.ppc", "product": { "name": "krb5-libs-0:1.2.7-47.ppc", "product_id": "krb5-libs-0:1.2.7-47.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=ppc" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.2.7-47.ppc", "product": { "name": "krb5-workstation-0:1.2.7-47.ppc", "product_id": "krb5-workstation-0:1.2.7-47.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.2.7-47?arch=ppc" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.ppc", "product": { "name": "krb5-debuginfo-0:1.2.7-47.ppc", "product_id": "krb5-debuginfo-0:1.2.7-47.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.ppc64", "product": { "name": "krb5-libs-0:1.2.7-47.ppc64", "product_id": "krb5-libs-0:1.2.7-47.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=ppc64" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.ppc64", "product": { "name": "krb5-debuginfo-0:1.2.7-47.ppc64", "product_id": "krb5-debuginfo-0:1.2.7-47.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "krb5-devel-0:1.2.7-47.s390x", "product": { "name": "krb5-devel-0:1.2.7-47.s390x", "product_id": "krb5-devel-0:1.2.7-47.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.2.7-47?arch=s390x" } } }, { "category": "product_version", "name": "krb5-server-0:1.2.7-47.s390x", "product": { "name": "krb5-server-0:1.2.7-47.s390x", "product_id": "krb5-server-0:1.2.7-47.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.2.7-47?arch=s390x" } } }, { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.s390x", "product": { "name": "krb5-libs-0:1.2.7-47.s390x", "product_id": "krb5-libs-0:1.2.7-47.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=s390x" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.2.7-47.s390x", "product": { "name": "krb5-workstation-0:1.2.7-47.s390x", "product_id": "krb5-workstation-0:1.2.7-47.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.2.7-47?arch=s390x" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.s390x", "product": { "name": "krb5-debuginfo-0:1.2.7-47.s390x", "product_id": "krb5-debuginfo-0:1.2.7-47.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "krb5-libs-0:1.2.7-47.s390", "product": { "name": "krb5-libs-0:1.2.7-47.s390", "product_id": "krb5-libs-0:1.2.7-47.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-libs@1.2.7-47?arch=s390" } } }, { "category": "product_version", "name": "krb5-debuginfo-0:1.2.7-47.s390", "product": { "name": "krb5-debuginfo-0:1.2.7-47.s390", "product_id": "krb5-debuginfo-0:1.2.7-47.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-debuginfo@1.2.7-47?arch=s390" } } }, { "category": "product_version", "name": "krb5-devel-0:1.2.7-47.s390", "product": { "name": "krb5-devel-0:1.2.7-47.s390", "product_id": "krb5-devel-0:1.2.7-47.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-devel@1.2.7-47?arch=s390" } } }, { "category": "product_version", "name": "krb5-server-0:1.2.7-47.s390", "product": { "name": "krb5-server-0:1.2.7-47.s390", "product_id": "krb5-server-0:1.2.7-47.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-server@1.2.7-47?arch=s390" } } }, { "category": "product_version", "name": "krb5-workstation-0:1.2.7-47.s390", "product": { "name": "krb5-workstation-0:1.2.7-47.s390", "product_id": "krb5-workstation-0:1.2.7-47.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/krb5-workstation@1.2.7-47?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.2.7-47.src as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-0:1.2.7-47.src" }, "product_reference": "krb5-0:1.2.7-47.src", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.i386" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.ia64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.ppc" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.ppc64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.s390" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.s390x" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-debuginfo-0:1.2.7-47.x86_64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-devel-0:1.2.7-47.i386" }, "product_reference": "krb5-devel-0:1.2.7-47.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-devel-0:1.2.7-47.ia64" }, "product_reference": "krb5-devel-0:1.2.7-47.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-devel-0:1.2.7-47.ppc" }, "product_reference": "krb5-devel-0:1.2.7-47.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-devel-0:1.2.7-47.s390" }, "product_reference": "krb5-devel-0:1.2.7-47.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-devel-0:1.2.7-47.s390x" }, "product_reference": "krb5-devel-0:1.2.7-47.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-devel-0:1.2.7-47.x86_64" }, "product_reference": "krb5-devel-0:1.2.7-47.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.i386" }, "product_reference": "krb5-libs-0:1.2.7-47.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.ia64" }, "product_reference": "krb5-libs-0:1.2.7-47.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.ppc" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.ppc64" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.s390" }, "product_reference": "krb5-libs-0:1.2.7-47.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.s390x" }, "product_reference": "krb5-libs-0:1.2.7-47.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-libs-0:1.2.7-47.x86_64" }, "product_reference": "krb5-libs-0:1.2.7-47.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-server-0:1.2.7-47.i386" }, "product_reference": "krb5-server-0:1.2.7-47.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-server-0:1.2.7-47.ia64" }, "product_reference": "krb5-server-0:1.2.7-47.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-server-0:1.2.7-47.ppc" }, "product_reference": "krb5-server-0:1.2.7-47.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-server-0:1.2.7-47.s390" }, "product_reference": "krb5-server-0:1.2.7-47.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-server-0:1.2.7-47.s390x" }, "product_reference": "krb5-server-0:1.2.7-47.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-server-0:1.2.7-47.x86_64" }, "product_reference": "krb5-server-0:1.2.7-47.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-workstation-0:1.2.7-47.i386" }, "product_reference": "krb5-workstation-0:1.2.7-47.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-workstation-0:1.2.7-47.ia64" }, "product_reference": "krb5-workstation-0:1.2.7-47.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-workstation-0:1.2.7-47.ppc" }, "product_reference": "krb5-workstation-0:1.2.7-47.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-workstation-0:1.2.7-47.s390" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-workstation-0:1.2.7-47.s390x" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:krb5-workstation-0:1.2.7-47.x86_64" }, "product_reference": "krb5-workstation-0:1.2.7-47.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.2.7-47.src as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-0:1.2.7-47.src" }, "product_reference": "krb5-0:1.2.7-47.src", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.i386" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.s390" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-devel-0:1.2.7-47.i386" }, "product_reference": "krb5-devel-0:1.2.7-47.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-devel-0:1.2.7-47.ia64" }, "product_reference": "krb5-devel-0:1.2.7-47.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-devel-0:1.2.7-47.ppc" }, "product_reference": "krb5-devel-0:1.2.7-47.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-devel-0:1.2.7-47.s390" }, "product_reference": "krb5-devel-0:1.2.7-47.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-devel-0:1.2.7-47.s390x" }, "product_reference": "krb5-devel-0:1.2.7-47.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-devel-0:1.2.7-47.x86_64" }, "product_reference": "krb5-devel-0:1.2.7-47.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.i386" }, "product_reference": "krb5-libs-0:1.2.7-47.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.ia64" }, "product_reference": "krb5-libs-0:1.2.7-47.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.ppc" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.ppc64" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.s390" }, "product_reference": "krb5-libs-0:1.2.7-47.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.s390x" }, "product_reference": "krb5-libs-0:1.2.7-47.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-libs-0:1.2.7-47.x86_64" }, "product_reference": "krb5-libs-0:1.2.7-47.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-server-0:1.2.7-47.i386" }, "product_reference": "krb5-server-0:1.2.7-47.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-server-0:1.2.7-47.ia64" }, "product_reference": "krb5-server-0:1.2.7-47.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-server-0:1.2.7-47.ppc" }, "product_reference": "krb5-server-0:1.2.7-47.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-server-0:1.2.7-47.s390" }, "product_reference": "krb5-server-0:1.2.7-47.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-server-0:1.2.7-47.s390x" }, "product_reference": "krb5-server-0:1.2.7-47.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-server-0:1.2.7-47.x86_64" }, "product_reference": "krb5-server-0:1.2.7-47.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-workstation-0:1.2.7-47.i386" }, "product_reference": "krb5-workstation-0:1.2.7-47.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-workstation-0:1.2.7-47.ia64" }, "product_reference": "krb5-workstation-0:1.2.7-47.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-workstation-0:1.2.7-47.ppc" }, "product_reference": "krb5-workstation-0:1.2.7-47.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-workstation-0:1.2.7-47.s390" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-workstation-0:1.2.7-47.s390x" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:krb5-workstation-0:1.2.7-47.x86_64" }, "product_reference": "krb5-workstation-0:1.2.7-47.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.2.7-47.src as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-0:1.2.7-47.src" }, "product_reference": "krb5-0:1.2.7-47.src", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.i386" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.ia64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.ppc" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.ppc64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.s390" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.s390x" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-debuginfo-0:1.2.7-47.x86_64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-devel-0:1.2.7-47.i386" }, "product_reference": "krb5-devel-0:1.2.7-47.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-devel-0:1.2.7-47.ia64" }, "product_reference": "krb5-devel-0:1.2.7-47.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-devel-0:1.2.7-47.ppc" }, "product_reference": "krb5-devel-0:1.2.7-47.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-devel-0:1.2.7-47.s390" }, "product_reference": "krb5-devel-0:1.2.7-47.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-devel-0:1.2.7-47.s390x" }, "product_reference": "krb5-devel-0:1.2.7-47.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-devel-0:1.2.7-47.x86_64" }, "product_reference": "krb5-devel-0:1.2.7-47.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.i386" }, "product_reference": "krb5-libs-0:1.2.7-47.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.ia64" }, "product_reference": "krb5-libs-0:1.2.7-47.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.ppc" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.ppc64" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.s390" }, "product_reference": "krb5-libs-0:1.2.7-47.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.s390x" }, "product_reference": "krb5-libs-0:1.2.7-47.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-libs-0:1.2.7-47.x86_64" }, "product_reference": "krb5-libs-0:1.2.7-47.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-server-0:1.2.7-47.i386" }, "product_reference": "krb5-server-0:1.2.7-47.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-server-0:1.2.7-47.ia64" }, "product_reference": "krb5-server-0:1.2.7-47.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-server-0:1.2.7-47.ppc" }, "product_reference": "krb5-server-0:1.2.7-47.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-server-0:1.2.7-47.s390" }, "product_reference": "krb5-server-0:1.2.7-47.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-server-0:1.2.7-47.s390x" }, "product_reference": "krb5-server-0:1.2.7-47.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-server-0:1.2.7-47.x86_64" }, "product_reference": "krb5-server-0:1.2.7-47.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-workstation-0:1.2.7-47.i386" }, "product_reference": "krb5-workstation-0:1.2.7-47.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-workstation-0:1.2.7-47.ia64" }, "product_reference": "krb5-workstation-0:1.2.7-47.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-workstation-0:1.2.7-47.ppc" }, "product_reference": "krb5-workstation-0:1.2.7-47.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-workstation-0:1.2.7-47.s390" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-workstation-0:1.2.7-47.s390x" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:krb5-workstation-0:1.2.7-47.x86_64" }, "product_reference": "krb5-workstation-0:1.2.7-47.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-0:1.2.7-47.src as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-0:1.2.7-47.src" }, "product_reference": "krb5-0:1.2.7-47.src", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.i386" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.ia64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.ppc" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.ppc64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.ppc64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.ppc64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.s390" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.s390x" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-debuginfo-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-debuginfo-0:1.2.7-47.x86_64" }, "product_reference": "krb5-debuginfo-0:1.2.7-47.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-devel-0:1.2.7-47.i386" }, "product_reference": "krb5-devel-0:1.2.7-47.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-devel-0:1.2.7-47.ia64" }, "product_reference": "krb5-devel-0:1.2.7-47.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-devel-0:1.2.7-47.ppc" }, "product_reference": "krb5-devel-0:1.2.7-47.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-devel-0:1.2.7-47.s390" }, "product_reference": "krb5-devel-0:1.2.7-47.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-devel-0:1.2.7-47.s390x" }, "product_reference": "krb5-devel-0:1.2.7-47.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-devel-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-devel-0:1.2.7-47.x86_64" }, "product_reference": "krb5-devel-0:1.2.7-47.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.i386" }, "product_reference": "krb5-libs-0:1.2.7-47.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.ia64" }, "product_reference": "krb5-libs-0:1.2.7-47.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.ppc" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.ppc64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.ppc64" }, "product_reference": "krb5-libs-0:1.2.7-47.ppc64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.s390" }, "product_reference": "krb5-libs-0:1.2.7-47.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.s390x" }, "product_reference": "krb5-libs-0:1.2.7-47.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-libs-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-libs-0:1.2.7-47.x86_64" }, "product_reference": "krb5-libs-0:1.2.7-47.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-server-0:1.2.7-47.i386" }, "product_reference": "krb5-server-0:1.2.7-47.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-server-0:1.2.7-47.ia64" }, "product_reference": "krb5-server-0:1.2.7-47.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-server-0:1.2.7-47.ppc" }, "product_reference": "krb5-server-0:1.2.7-47.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-server-0:1.2.7-47.s390" }, "product_reference": "krb5-server-0:1.2.7-47.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-server-0:1.2.7-47.s390x" }, "product_reference": "krb5-server-0:1.2.7-47.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-server-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-server-0:1.2.7-47.x86_64" }, "product_reference": "krb5-server-0:1.2.7-47.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-workstation-0:1.2.7-47.i386" }, "product_reference": "krb5-workstation-0:1.2.7-47.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-workstation-0:1.2.7-47.ia64" }, "product_reference": "krb5-workstation-0:1.2.7-47.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-workstation-0:1.2.7-47.ppc" }, "product_reference": "krb5-workstation-0:1.2.7-47.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-workstation-0:1.2.7-47.s390" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-workstation-0:1.2.7-47.s390x" }, "product_reference": "krb5-workstation-0:1.2.7-47.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "krb5-workstation-0:1.2.7-47.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:krb5-workstation-0:1.2.7-47.x86_64" }, "product_reference": "krb5-workstation-0:1.2.7-47.x86_64", "relates_to_product_reference": "3WS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:12:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:562" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" }, { "acknowledgments": [ { "names": [ "the MIT Kerberos project", "Ga\u00ebl Delalleau" ] } ], "cve": "CVE-2005-0488", "discovery_date": "2005-02-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617531" } ], "notes": [ { "category": "description", "text": "Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-0488" }, { "category": "external", "summary": "RHBZ#1617531", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617531" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-0488", "url": "https://www.cve.org/CVERecord?id=CVE-2005-0488" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-0488", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-0488" } ], "release_date": "2005-06-14T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:12:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:562" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "security flaw" }, { "acknowledgments": [ { "names": [ "the MIT Kerberos project", "Daniel Wachdorf" ] } ], "cve": "CVE-2005-1175", "discovery_date": "2005-04-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617614" } ], "notes": [ { "category": "description", "text": "Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain valid TCP or UDP request.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1175" }, { "category": "external", "summary": "RHBZ#1617614", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617614" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1175", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1175" } ], "release_date": "2005-07-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:12:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:562" } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "security flaw" }, { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2005-1689", "discovery_date": "2005-05-26T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617659" } ], "notes": [ { "category": "description", "text": "Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" } ], "product_status": { "fixed": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2005-1689" }, { "category": "external", "summary": "RHBZ#1617659", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617659" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2005-1689", "url": "https://www.cve.org/CVERecord?id=CVE-2005-1689" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2005-1689", "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-1689" } ], "release_date": "2005-07-12T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-07-12T18:12:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.", "product_ids": [ "3AS:krb5-0:1.2.7-47.src", "3AS:krb5-debuginfo-0:1.2.7-47.i386", "3AS:krb5-debuginfo-0:1.2.7-47.ia64", "3AS:krb5-debuginfo-0:1.2.7-47.ppc", "3AS:krb5-debuginfo-0:1.2.7-47.ppc64", "3AS:krb5-debuginfo-0:1.2.7-47.s390", "3AS:krb5-debuginfo-0:1.2.7-47.s390x", "3AS:krb5-debuginfo-0:1.2.7-47.x86_64", "3AS:krb5-devel-0:1.2.7-47.i386", "3AS:krb5-devel-0:1.2.7-47.ia64", "3AS:krb5-devel-0:1.2.7-47.ppc", "3AS:krb5-devel-0:1.2.7-47.s390", "3AS:krb5-devel-0:1.2.7-47.s390x", "3AS:krb5-devel-0:1.2.7-47.x86_64", "3AS:krb5-libs-0:1.2.7-47.i386", "3AS:krb5-libs-0:1.2.7-47.ia64", "3AS:krb5-libs-0:1.2.7-47.ppc", "3AS:krb5-libs-0:1.2.7-47.ppc64", "3AS:krb5-libs-0:1.2.7-47.s390", "3AS:krb5-libs-0:1.2.7-47.s390x", "3AS:krb5-libs-0:1.2.7-47.x86_64", "3AS:krb5-server-0:1.2.7-47.i386", "3AS:krb5-server-0:1.2.7-47.ia64", "3AS:krb5-server-0:1.2.7-47.ppc", "3AS:krb5-server-0:1.2.7-47.s390", "3AS:krb5-server-0:1.2.7-47.s390x", "3AS:krb5-server-0:1.2.7-47.x86_64", "3AS:krb5-workstation-0:1.2.7-47.i386", "3AS:krb5-workstation-0:1.2.7-47.ia64", "3AS:krb5-workstation-0:1.2.7-47.ppc", "3AS:krb5-workstation-0:1.2.7-47.s390", "3AS:krb5-workstation-0:1.2.7-47.s390x", "3AS:krb5-workstation-0:1.2.7-47.x86_64", "3Desktop:krb5-0:1.2.7-47.src", "3Desktop:krb5-debuginfo-0:1.2.7-47.i386", "3Desktop:krb5-debuginfo-0:1.2.7-47.ia64", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc", "3Desktop:krb5-debuginfo-0:1.2.7-47.ppc64", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390", "3Desktop:krb5-debuginfo-0:1.2.7-47.s390x", "3Desktop:krb5-debuginfo-0:1.2.7-47.x86_64", "3Desktop:krb5-devel-0:1.2.7-47.i386", "3Desktop:krb5-devel-0:1.2.7-47.ia64", "3Desktop:krb5-devel-0:1.2.7-47.ppc", "3Desktop:krb5-devel-0:1.2.7-47.s390", "3Desktop:krb5-devel-0:1.2.7-47.s390x", "3Desktop:krb5-devel-0:1.2.7-47.x86_64", "3Desktop:krb5-libs-0:1.2.7-47.i386", "3Desktop:krb5-libs-0:1.2.7-47.ia64", "3Desktop:krb5-libs-0:1.2.7-47.ppc", "3Desktop:krb5-libs-0:1.2.7-47.ppc64", "3Desktop:krb5-libs-0:1.2.7-47.s390", "3Desktop:krb5-libs-0:1.2.7-47.s390x", "3Desktop:krb5-libs-0:1.2.7-47.x86_64", "3Desktop:krb5-server-0:1.2.7-47.i386", "3Desktop:krb5-server-0:1.2.7-47.ia64", "3Desktop:krb5-server-0:1.2.7-47.ppc", "3Desktop:krb5-server-0:1.2.7-47.s390", "3Desktop:krb5-server-0:1.2.7-47.s390x", "3Desktop:krb5-server-0:1.2.7-47.x86_64", "3Desktop:krb5-workstation-0:1.2.7-47.i386", "3Desktop:krb5-workstation-0:1.2.7-47.ia64", "3Desktop:krb5-workstation-0:1.2.7-47.ppc", "3Desktop:krb5-workstation-0:1.2.7-47.s390", "3Desktop:krb5-workstation-0:1.2.7-47.s390x", "3Desktop:krb5-workstation-0:1.2.7-47.x86_64", "3ES:krb5-0:1.2.7-47.src", "3ES:krb5-debuginfo-0:1.2.7-47.i386", "3ES:krb5-debuginfo-0:1.2.7-47.ia64", "3ES:krb5-debuginfo-0:1.2.7-47.ppc", "3ES:krb5-debuginfo-0:1.2.7-47.ppc64", "3ES:krb5-debuginfo-0:1.2.7-47.s390", "3ES:krb5-debuginfo-0:1.2.7-47.s390x", "3ES:krb5-debuginfo-0:1.2.7-47.x86_64", "3ES:krb5-devel-0:1.2.7-47.i386", "3ES:krb5-devel-0:1.2.7-47.ia64", "3ES:krb5-devel-0:1.2.7-47.ppc", "3ES:krb5-devel-0:1.2.7-47.s390", "3ES:krb5-devel-0:1.2.7-47.s390x", "3ES:krb5-devel-0:1.2.7-47.x86_64", "3ES:krb5-libs-0:1.2.7-47.i386", "3ES:krb5-libs-0:1.2.7-47.ia64", "3ES:krb5-libs-0:1.2.7-47.ppc", "3ES:krb5-libs-0:1.2.7-47.ppc64", "3ES:krb5-libs-0:1.2.7-47.s390", "3ES:krb5-libs-0:1.2.7-47.s390x", "3ES:krb5-libs-0:1.2.7-47.x86_64", "3ES:krb5-server-0:1.2.7-47.i386", "3ES:krb5-server-0:1.2.7-47.ia64", "3ES:krb5-server-0:1.2.7-47.ppc", "3ES:krb5-server-0:1.2.7-47.s390", "3ES:krb5-server-0:1.2.7-47.s390x", "3ES:krb5-server-0:1.2.7-47.x86_64", "3ES:krb5-workstation-0:1.2.7-47.i386", "3ES:krb5-workstation-0:1.2.7-47.ia64", "3ES:krb5-workstation-0:1.2.7-47.ppc", "3ES:krb5-workstation-0:1.2.7-47.s390", "3ES:krb5-workstation-0:1.2.7-47.s390x", "3ES:krb5-workstation-0:1.2.7-47.x86_64", "3WS:krb5-0:1.2.7-47.src", "3WS:krb5-debuginfo-0:1.2.7-47.i386", "3WS:krb5-debuginfo-0:1.2.7-47.ia64", "3WS:krb5-debuginfo-0:1.2.7-47.ppc", "3WS:krb5-debuginfo-0:1.2.7-47.ppc64", "3WS:krb5-debuginfo-0:1.2.7-47.s390", "3WS:krb5-debuginfo-0:1.2.7-47.s390x", "3WS:krb5-debuginfo-0:1.2.7-47.x86_64", "3WS:krb5-devel-0:1.2.7-47.i386", "3WS:krb5-devel-0:1.2.7-47.ia64", "3WS:krb5-devel-0:1.2.7-47.ppc", "3WS:krb5-devel-0:1.2.7-47.s390", "3WS:krb5-devel-0:1.2.7-47.s390x", "3WS:krb5-devel-0:1.2.7-47.x86_64", "3WS:krb5-libs-0:1.2.7-47.i386", "3WS:krb5-libs-0:1.2.7-47.ia64", "3WS:krb5-libs-0:1.2.7-47.ppc", "3WS:krb5-libs-0:1.2.7-47.ppc64", "3WS:krb5-libs-0:1.2.7-47.s390", "3WS:krb5-libs-0:1.2.7-47.s390x", "3WS:krb5-libs-0:1.2.7-47.x86_64", "3WS:krb5-server-0:1.2.7-47.i386", "3WS:krb5-server-0:1.2.7-47.ia64", "3WS:krb5-server-0:1.2.7-47.ppc", "3WS:krb5-server-0:1.2.7-47.s390", "3WS:krb5-server-0:1.2.7-47.s390x", "3WS:krb5-server-0:1.2.7-47.x86_64", "3WS:krb5-workstation-0:1.2.7-47.i386", "3WS:krb5-workstation-0:1.2.7-47.ia64", "3WS:krb5-workstation-0:1.2.7-47.ppc", "3WS:krb5-workstation-0:1.2.7-47.s390", "3WS:krb5-workstation-0:1.2.7-47.s390x", "3WS:krb5-workstation-0:1.2.7-47.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:562" } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "security flaw" } ] }
rhsa-2005_106
Vulnerability from csaf_redhat
Published
2005-05-18 13:48
Modified
2024-11-21 23:26
Summary
Red Hat Security Advisory: openssh security update
Notes
Topic
Updated openssh packages that fix a potential security vulnerability and
various other bugs are now available for Red Hat Enterprise Linux 3.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Details
OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. SSH
replaces rlogin and rsh, and provides secure encrypted communications
between two untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over a secure channel. Public
key authentication can be used for "passwordless" access to servers.
The scp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses scp to copy files from a malicious server.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
These updated packages also correct the following bugs:
On systems where direct ssh access for the root user was disabled by
configuration (setting "PermitRootLogin no"), attempts to guess the root
password could be judged as sucessful or unsucessful by observing a delay.
On systems where the privilege separation feature was turned on, the user
resource limits were not correctly set if the configuration specified to
raise them above the defaults. It was also not possible to change an
expired password.
Users of openssh should upgrade to these updated packages, which contain
backported patches to resolve these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated openssh packages that fix a potential security vulnerability and\nvarious other bugs are now available for Red Hat Enterprise Linux 3.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.", "title": "Topic" }, { "category": "general", "text": "OpenSSH is OpenBSD\u0027s SSH (Secure SHell) protocol implementation. SSH\nreplaces rlogin and rsh, and provides secure encrypted communications\nbetween two untrusted hosts over an insecure network. X11 connections and\narbitrary TCP/IP ports can also be forwarded over a secure channel. Public\nkey authentication can be used for \"passwordless\" access to servers.\n\nThe scp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses scp to copy files from a malicious server.\nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0175 to this issue.\n\nThese updated packages also correct the following bugs:\n\nOn systems where direct ssh access for the root user was disabled by\nconfiguration (setting \"PermitRootLogin no\"), attempts to guess the root\npassword could be judged as sucessful or unsucessful by observing a delay.\n\nOn systems where the privilege separation feature was turned on, the user\nresource limits were not correctly set if the configuration specified to\nraise them above the defaults. It was also not possible to change an\nexpired password.\n\nUsers of openssh should upgrade to these updated packages, which contain\nbackported patches to resolve these issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:106", "url": "https://access.redhat.com/errata/RHSA-2005:106" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "120147", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=120147" }, { "category": "external", "summary": "124602", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=124602" }, { "category": "external", "summary": "141642", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=141642" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_106.json" } ], "title": "Red Hat Security Advisory: openssh security update", "tracking": { "current_release_date": "2024-11-21T23:26:27+00:00", "generator": { "date": "2024-11-21T23:26:27+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:106", "initial_release_date": "2005-05-18T13:48:00+00:00", "revision_history": [ { "date": "2005-05-18T13:48:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-05-18T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:26:27+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 3", "product": { "name": "Red Hat Enterprise Linux AS version 3", "product_id": "3AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::as" } } }, { "category": "product_name", "name": "Red Hat Desktop version 3", "product": { "name": "Red Hat Desktop version 3", "product_id": "3Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 3", "product": { "name": "Red Hat Enterprise Linux ES version 3", "product_id": "3ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 3", "product": { "name": "Red Hat Enterprise Linux WS version 3", "product_id": "3WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:3::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "openssh-server-0:3.6.1p2-33.30.4.ia64", "product": { "name": "openssh-server-0:3.6.1p2-33.30.4.ia64", "product_id": "openssh-server-0:3.6.1p2-33.30.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-server@3.6.1p2-33.30.4?arch=ia64" } } }, { "category": "product_version", "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "product": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "product_id": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass-gnome@3.6.1p2-33.30.4?arch=ia64" } } }, { "category": "product_version", "name": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "product": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "product_id": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass@3.6.1p2-33.30.4?arch=ia64" } } }, { "category": "product_version", "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "product": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "product_id": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-debuginfo@3.6.1p2-33.30.4?arch=ia64" } } }, { "category": "product_version", "name": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "product": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "product_id": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-clients@3.6.1p2-33.30.4?arch=ia64" } } }, { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.ia64", "product": { "name": "openssh-0:3.6.1p2-33.30.4.ia64", "product_id": "openssh-0:3.6.1p2-33.30.4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "product": { "name": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "product_id": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-server@3.6.1p2-33.30.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "product": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "product_id": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass-gnome@3.6.1p2-33.30.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "product": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "product_id": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass@3.6.1p2-33.30.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "product": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "product_id": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-debuginfo@3.6.1p2-33.30.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "product": { "name": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "product_id": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-clients@3.6.1p2-33.30.4?arch=x86_64" } } }, { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.x86_64", "product": { "name": "openssh-0:3.6.1p2-33.30.4.x86_64", "product_id": "openssh-0:3.6.1p2-33.30.4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "openssh-server-0:3.6.1p2-33.30.4.i386", "product": { "name": "openssh-server-0:3.6.1p2-33.30.4.i386", "product_id": "openssh-server-0:3.6.1p2-33.30.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-server@3.6.1p2-33.30.4?arch=i386" } } }, { "category": "product_version", "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "product": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "product_id": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass-gnome@3.6.1p2-33.30.4?arch=i386" } } }, { "category": "product_version", "name": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "product": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "product_id": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass@3.6.1p2-33.30.4?arch=i386" } } }, { "category": "product_version", "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "product": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "product_id": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-debuginfo@3.6.1p2-33.30.4?arch=i386" } } }, { "category": "product_version", "name": "openssh-clients-0:3.6.1p2-33.30.4.i386", "product": { "name": "openssh-clients-0:3.6.1p2-33.30.4.i386", "product_id": "openssh-clients-0:3.6.1p2-33.30.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-clients@3.6.1p2-33.30.4?arch=i386" } } }, { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.i386", "product": { "name": "openssh-0:3.6.1p2-33.30.4.i386", "product_id": "openssh-0:3.6.1p2-33.30.4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.src", "product": { "name": "openssh-0:3.6.1p2-33.30.4.src", "product_id": "openssh-0:3.6.1p2-33.30.4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "openssh-server-0:3.6.1p2-33.30.4.ppc", "product": { "name": "openssh-server-0:3.6.1p2-33.30.4.ppc", "product_id": "openssh-server-0:3.6.1p2-33.30.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-server@3.6.1p2-33.30.4?arch=ppc" } } }, { "category": "product_version", "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "product": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "product_id": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass-gnome@3.6.1p2-33.30.4?arch=ppc" } } }, { "category": "product_version", "name": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "product": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "product_id": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass@3.6.1p2-33.30.4?arch=ppc" } } }, { "category": "product_version", "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "product": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "product_id": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-debuginfo@3.6.1p2-33.30.4?arch=ppc" } } }, { "category": "product_version", "name": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "product": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "product_id": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-clients@3.6.1p2-33.30.4?arch=ppc" } } }, { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.ppc", "product": { "name": "openssh-0:3.6.1p2-33.30.4.ppc", "product_id": "openssh-0:3.6.1p2-33.30.4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "openssh-server-0:3.6.1p2-33.30.4.s390x", "product": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390x", "product_id": "openssh-server-0:3.6.1p2-33.30.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-server@3.6.1p2-33.30.4?arch=s390x" } } }, { "category": "product_version", "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "product": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "product_id": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass-gnome@3.6.1p2-33.30.4?arch=s390x" } } }, { "category": "product_version", "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "product": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "product_id": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass@3.6.1p2-33.30.4?arch=s390x" } } }, { "category": "product_version", "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "product": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "product_id": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-debuginfo@3.6.1p2-33.30.4?arch=s390x" } } }, { "category": "product_version", "name": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "product": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "product_id": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-clients@3.6.1p2-33.30.4?arch=s390x" } } }, { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.s390x", "product": { "name": "openssh-0:3.6.1p2-33.30.4.s390x", "product_id": "openssh-0:3.6.1p2-33.30.4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "openssh-server-0:3.6.1p2-33.30.4.s390", "product": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390", "product_id": "openssh-server-0:3.6.1p2-33.30.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-server@3.6.1p2-33.30.4?arch=s390" } } }, { "category": "product_version", "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "product": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "product_id": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass-gnome@3.6.1p2-33.30.4?arch=s390" } } }, { "category": "product_version", "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "product": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "product_id": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-askpass@3.6.1p2-33.30.4?arch=s390" } } }, { "category": "product_version", "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "product": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "product_id": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-debuginfo@3.6.1p2-33.30.4?arch=s390" } } }, { "category": "product_version", "name": "openssh-clients-0:3.6.1p2-33.30.4.s390", "product": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390", "product_id": "openssh-clients-0:3.6.1p2-33.30.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh-clients@3.6.1p2-33.30.4?arch=s390" } } }, { "category": "product_version", "name": "openssh-0:3.6.1p2-33.30.4.s390", "product": { "name": "openssh-0:3.6.1p2-33.30.4.s390", "product_id": "openssh-0:3.6.1p2-33.30.4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/openssh@3.6.1p2-33.30.4?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.src as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.src" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.src", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-clients-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-clients-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-clients-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-clients-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-clients-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-clients-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-server-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-server-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-server-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-server-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-server-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux AS version 3", "product_id": "3AS:openssh-server-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3AS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.src as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.src" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.src", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-server-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-server-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-server-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-server-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-server-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Desktop version 3", "product_id": "3Desktop:openssh-server-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.src as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.src" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.src", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-clients-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-clients-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-clients-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-clients-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-clients-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-clients-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-server-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-server-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-server-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-server-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-server-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux ES version 3", "product_id": "3ES:openssh-server-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3ES" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.src as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.src" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.src", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-clients-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-clients-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-clients-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-clients-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-clients-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-clients-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-clients-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-clients-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.i386 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-server-0:3.6.1p2-33.30.4.i386" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.i386", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ia64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-server-0:3.6.1p2-33.30.4.ia64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ia64", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.ppc as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-server-0:3.6.1p2-33.30.4.ppc" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.ppc", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-server-0:3.6.1p2-33.30.4.s390" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.s390x as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-server-0:3.6.1p2-33.30.4.s390x" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.s390x", "relates_to_product_reference": "3WS" }, { "category": "default_component_of", "full_product_name": { "name": "openssh-server-0:3.6.1p2-33.30.4.x86_64 as a component of Red Hat Enterprise Linux WS version 3", "product_id": "3WS:openssh-server-0:3.6.1p2-33.30.4.x86_64" }, "product_reference": "openssh-server-0:3.6.1p2-33.30.4.x86_64", "relates_to_product_reference": "3WS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "3AS:openssh-0:3.6.1p2-33.30.4.i386", "3AS:openssh-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-0:3.6.1p2-33.30.4.s390", "3AS:openssh-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-0:3.6.1p2-33.30.4.src", "3AS:openssh-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-clients-0:3.6.1p2-33.30.4.i386", "3AS:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-clients-0:3.6.1p2-33.30.4.s390", "3AS:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-server-0:3.6.1p2-33.30.4.i386", "3AS:openssh-server-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-server-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-server-0:3.6.1p2-33.30.4.s390", "3AS:openssh-server-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-server-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-0:3.6.1p2-33.30.4.src", "3Desktop:openssh-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-0:3.6.1p2-33.30.4.i386", "3ES:openssh-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-0:3.6.1p2-33.30.4.s390", "3ES:openssh-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-0:3.6.1p2-33.30.4.src", "3ES:openssh-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-clients-0:3.6.1p2-33.30.4.i386", "3ES:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-clients-0:3.6.1p2-33.30.4.s390", "3ES:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-server-0:3.6.1p2-33.30.4.i386", "3ES:openssh-server-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-server-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-server-0:3.6.1p2-33.30.4.s390", "3ES:openssh-server-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-server-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-0:3.6.1p2-33.30.4.i386", "3WS:openssh-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-0:3.6.1p2-33.30.4.s390", "3WS:openssh-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-0:3.6.1p2-33.30.4.src", "3WS:openssh-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-clients-0:3.6.1p2-33.30.4.i386", "3WS:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-clients-0:3.6.1p2-33.30.4.s390", "3WS:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-server-0:3.6.1p2-33.30.4.i386", "3WS:openssh-server-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-server-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-server-0:3.6.1p2-33.30.4.s390", "3WS:openssh-server-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-server-0:3.6.1p2-33.30.4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-05-18T13:48:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.\n\nIf up2date fails to connect to Red Hat Network due to SSL\nCertificate Errors, you need to install a version of the\nup2date client with an updated certificate. The latest version of\nup2date is available from the Red Hat FTP site and may also be\ndownloaded directly from the RHN website:\n\nhttps://rhn.redhat.com/help/latest-up2date.pxt", "product_ids": [ "3AS:openssh-0:3.6.1p2-33.30.4.i386", "3AS:openssh-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-0:3.6.1p2-33.30.4.s390", "3AS:openssh-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-0:3.6.1p2-33.30.4.src", "3AS:openssh-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-clients-0:3.6.1p2-33.30.4.i386", "3AS:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-clients-0:3.6.1p2-33.30.4.s390", "3AS:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3AS:openssh-server-0:3.6.1p2-33.30.4.i386", "3AS:openssh-server-0:3.6.1p2-33.30.4.ia64", "3AS:openssh-server-0:3.6.1p2-33.30.4.ppc", "3AS:openssh-server-0:3.6.1p2-33.30.4.s390", "3AS:openssh-server-0:3.6.1p2-33.30.4.s390x", "3AS:openssh-server-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-0:3.6.1p2-33.30.4.src", "3Desktop:openssh-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.i386", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.ia64", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.ppc", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.s390", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.s390x", "3Desktop:openssh-server-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-0:3.6.1p2-33.30.4.i386", "3ES:openssh-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-0:3.6.1p2-33.30.4.s390", "3ES:openssh-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-0:3.6.1p2-33.30.4.src", "3ES:openssh-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-clients-0:3.6.1p2-33.30.4.i386", "3ES:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-clients-0:3.6.1p2-33.30.4.s390", "3ES:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3ES:openssh-server-0:3.6.1p2-33.30.4.i386", "3ES:openssh-server-0:3.6.1p2-33.30.4.ia64", "3ES:openssh-server-0:3.6.1p2-33.30.4.ppc", "3ES:openssh-server-0:3.6.1p2-33.30.4.s390", "3ES:openssh-server-0:3.6.1p2-33.30.4.s390x", "3ES:openssh-server-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-0:3.6.1p2-33.30.4.i386", "3WS:openssh-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-0:3.6.1p2-33.30.4.s390", "3WS:openssh-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-0:3.6.1p2-33.30.4.src", "3WS:openssh-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.i386", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.s390", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-askpass-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.i386", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-askpass-gnome-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-clients-0:3.6.1p2-33.30.4.i386", "3WS:openssh-clients-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-clients-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-clients-0:3.6.1p2-33.30.4.s390", "3WS:openssh-clients-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-clients-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.i386", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-debuginfo-0:3.6.1p2-33.30.4.x86_64", "3WS:openssh-server-0:3.6.1p2-33.30.4.i386", "3WS:openssh-server-0:3.6.1p2-33.30.4.ia64", "3WS:openssh-server-0:3.6.1p2-33.30.4.ppc", "3WS:openssh-server-0:3.6.1p2-33.30.4.s390", "3WS:openssh-server-0:3.6.1p2-33.30.4.s390x", "3WS:openssh-server-0:3.6.1p2-33.30.4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:106" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" } ] }
rhsa-2005_165
Vulnerability from csaf_redhat
Published
2005-06-08 15:01
Modified
2024-11-21 23:26
Summary
Red Hat Security Advisory: rsh security update
Notes
Topic
Updated rsh packages that fix various bugs and a theoretical security issue
are now available.
This update has been rated as having low security impact by the Red Hat
Security Response Team
Details
The rsh package contains a set of programs that allow users to run
commands on remote machines, login to other machines, and copy files
between machines, using the rsh, rlogin, and rcp commands. All three of
these commands use rhosts-style authentication.
The rcp protocol allows a server to instruct a client to write to arbitrary
files outside of the current directory. This could potentially cause a
security issue if a user uses rcp to copy files from a malicious server.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0175 to this issue.
These updated packages also address the following bugs:
The rlogind server reported "SIGCHLD set to SIG_IGN but calls wait()"
message to the system log because the original BSD code was ported
incorrectly to linux.
The rexecd server did not function on systems where client hostnames were
not in the DNS service, because server code called gethostbyaddr() for each
new connection.
The rcp command incorrectly used the "errno" variable and produced
erroneous error messages.
The rexecd command ignored settings in the /etc/security/limits file,
because the PAM session was incorrectly initialized.
All users of rsh should upgrade to these updated packages, which resolve
these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Low" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated rsh packages that fix various bugs and a theoretical security issue\nare now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team", "title": "Topic" }, { "category": "general", "text": "The rsh package contains a set of programs that allow users to run\ncommands on remote machines, login to other machines, and copy files\nbetween machines, using the rsh, rlogin, and rcp commands. All three of\nthese commands use rhosts-style authentication.\n\nThe rcp protocol allows a server to instruct a client to write to arbitrary\nfiles outside of the current directory. This could potentially cause a\nsecurity issue if a user uses rcp to copy files from a malicious server.\nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0175 to this issue.\n\nThese updated packages also address the following bugs:\n\nThe rlogind server reported \"SIGCHLD set to SIG_IGN but calls wait()\"\nmessage to the system log because the original BSD code was ported\nincorrectly to linux.\n\nThe rexecd server did not function on systems where client hostnames were\nnot in the DNS service, because server code called gethostbyaddr() for each\nnew connection.\n\nThe rcp command incorrectly used the \"errno\" variable and produced\nerroneous error messages.\n\nThe rexecd command ignored settings in the /etc/security/limits file,\nbecause the PAM session was incorrectly initialized.\n\nAll users of rsh should upgrade to these updated packages, which resolve\nthese issues.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2005:165", "url": "https://access.redhat.com/errata/RHSA-2005:165" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#low", "url": "https://access.redhat.com/security/updates/classification/#low" }, { "category": "external", "summary": "146978", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146978" }, { "category": "external", "summary": "146979", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=146979" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2005/rhsa-2005_165.json" } ], "title": "Red Hat Security Advisory: rsh security update", "tracking": { "current_release_date": "2024-11-21T23:26:31+00:00", "generator": { "date": "2024-11-21T23:26:31+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2005:165", "initial_release_date": "2005-06-08T15:01:00+00:00", "revision_history": [ { "date": "2005-06-08T15:01:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2005-06-08T00:00:00+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-21T23:26:31+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.ia64", "product": { "name": "rsh-0:0.17-25.3.ia64", "product_id": "rsh-0:0.17-25.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=ia64" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-25.3.ia64", "product": { "name": "rsh-server-0:0.17-25.3.ia64", "product_id": "rsh-server-0:0.17-25.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-25.3?arch=ia64" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-25.3.ia64", "product": { "name": "rsh-debuginfo-0:0.17-25.3.ia64", "product_id": "rsh-debuginfo-0:0.17-25.3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-25.3?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.src", "product": { "name": "rsh-0:0.17-25.3.src", "product_id": "rsh-0:0.17-25.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.x86_64", "product": { "name": "rsh-0:0.17-25.3.x86_64", "product_id": "rsh-0:0.17-25.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=x86_64" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-25.3.x86_64", "product": { "name": "rsh-server-0:0.17-25.3.x86_64", "product_id": "rsh-server-0:0.17-25.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-25.3?arch=x86_64" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-25.3.x86_64", "product": { "name": "rsh-debuginfo-0:0.17-25.3.x86_64", "product_id": "rsh-debuginfo-0:0.17-25.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-25.3?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.i386", "product": { "name": "rsh-0:0.17-25.3.i386", "product_id": "rsh-0:0.17-25.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=i386" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-25.3.i386", "product": { "name": "rsh-server-0:0.17-25.3.i386", "product_id": "rsh-server-0:0.17-25.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-25.3?arch=i386" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-25.3.i386", "product": { "name": "rsh-debuginfo-0:0.17-25.3.i386", "product_id": "rsh-debuginfo-0:0.17-25.3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-25.3?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.ppc", "product": { "name": "rsh-0:0.17-25.3.ppc", "product_id": "rsh-0:0.17-25.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=ppc" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-25.3.ppc", "product": { "name": "rsh-server-0:0.17-25.3.ppc", "product_id": "rsh-server-0:0.17-25.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-25.3?arch=ppc" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-25.3.ppc", "product": { "name": "rsh-debuginfo-0:0.17-25.3.ppc", "product_id": "rsh-debuginfo-0:0.17-25.3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-25.3?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.s390x", "product": { "name": "rsh-0:0.17-25.3.s390x", "product_id": "rsh-0:0.17-25.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=s390x" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-25.3.s390x", "product": { "name": "rsh-server-0:0.17-25.3.s390x", "product_id": "rsh-server-0:0.17-25.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-25.3?arch=s390x" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-25.3.s390x", "product": { "name": "rsh-debuginfo-0:0.17-25.3.s390x", "product_id": "rsh-debuginfo-0:0.17-25.3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-25.3?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "rsh-0:0.17-25.3.s390", "product": { "name": "rsh-0:0.17-25.3.s390", "product_id": "rsh-0:0.17-25.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh@0.17-25.3?arch=s390" } } }, { "category": "product_version", "name": "rsh-server-0:0.17-25.3.s390", "product": { "name": "rsh-server-0:0.17-25.3.s390", "product_id": "rsh-server-0:0.17-25.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-server@0.17-25.3?arch=s390" } } }, { "category": "product_version", "name": "rsh-debuginfo-0:0.17-25.3.s390", "product": { "name": "rsh-debuginfo-0:0.17-25.3.s390", "product_id": "rsh-debuginfo-0:0.17-25.3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/rsh-debuginfo@0.17-25.3?arch=s390" } } } ], "category": "architecture", "name": "s390" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.i386" }, "product_reference": "rsh-0:0.17-25.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.ia64" }, "product_reference": "rsh-0:0.17-25.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.ppc" }, "product_reference": "rsh-0:0.17-25.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.s390" }, "product_reference": "rsh-0:0.17-25.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.s390x" }, "product_reference": "rsh-0:0.17-25.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.src" }, "product_reference": "rsh-0:0.17-25.3.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-0:0.17-25.3.x86_64" }, "product_reference": "rsh-0:0.17-25.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-debuginfo-0:0.17-25.3.i386" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-debuginfo-0:0.17-25.3.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-debuginfo-0:0.17-25.3.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-debuginfo-0:0.17-25.3.s390" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-debuginfo-0:0.17-25.3.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-debuginfo-0:0.17-25.3.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-server-0:0.17-25.3.i386" }, "product_reference": "rsh-server-0:0.17-25.3.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-server-0:0.17-25.3.ia64" }, "product_reference": "rsh-server-0:0.17-25.3.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-server-0:0.17-25.3.ppc" }, "product_reference": "rsh-server-0:0.17-25.3.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-server-0:0.17-25.3.s390" }, "product_reference": "rsh-server-0:0.17-25.3.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-server-0:0.17-25.3.s390x" }, "product_reference": "rsh-server-0:0.17-25.3.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:rsh-server-0:0.17-25.3.x86_64" }, "product_reference": "rsh-server-0:0.17-25.3.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.i386" }, "product_reference": "rsh-0:0.17-25.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.ia64" }, "product_reference": "rsh-0:0.17-25.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.ppc" }, "product_reference": "rsh-0:0.17-25.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.s390" }, "product_reference": "rsh-0:0.17-25.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.s390x" }, "product_reference": "rsh-0:0.17-25.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.src" }, "product_reference": "rsh-0:0.17-25.3.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-0:0.17-25.3.x86_64" }, "product_reference": "rsh-0:0.17-25.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-debuginfo-0:0.17-25.3.i386" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-debuginfo-0:0.17-25.3.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-debuginfo-0:0.17-25.3.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-debuginfo-0:0.17-25.3.s390" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-debuginfo-0:0.17-25.3.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-debuginfo-0:0.17-25.3.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-server-0:0.17-25.3.i386" }, "product_reference": "rsh-server-0:0.17-25.3.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-server-0:0.17-25.3.ia64" }, "product_reference": "rsh-server-0:0.17-25.3.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-server-0:0.17-25.3.ppc" }, "product_reference": "rsh-server-0:0.17-25.3.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-server-0:0.17-25.3.s390" }, "product_reference": "rsh-server-0:0.17-25.3.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-server-0:0.17-25.3.s390x" }, "product_reference": "rsh-server-0:0.17-25.3.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:rsh-server-0:0.17-25.3.x86_64" }, "product_reference": "rsh-server-0:0.17-25.3.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.i386" }, "product_reference": "rsh-0:0.17-25.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.ia64" }, "product_reference": "rsh-0:0.17-25.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.ppc" }, "product_reference": "rsh-0:0.17-25.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.s390" }, "product_reference": "rsh-0:0.17-25.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.s390x" }, "product_reference": "rsh-0:0.17-25.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.src" }, "product_reference": "rsh-0:0.17-25.3.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-0:0.17-25.3.x86_64" }, "product_reference": "rsh-0:0.17-25.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-debuginfo-0:0.17-25.3.i386" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-debuginfo-0:0.17-25.3.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-debuginfo-0:0.17-25.3.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-debuginfo-0:0.17-25.3.s390" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-debuginfo-0:0.17-25.3.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-debuginfo-0:0.17-25.3.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-server-0:0.17-25.3.i386" }, "product_reference": "rsh-server-0:0.17-25.3.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-server-0:0.17-25.3.ia64" }, "product_reference": "rsh-server-0:0.17-25.3.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-server-0:0.17-25.3.ppc" }, "product_reference": "rsh-server-0:0.17-25.3.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-server-0:0.17-25.3.s390" }, "product_reference": "rsh-server-0:0.17-25.3.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-server-0:0.17-25.3.s390x" }, "product_reference": "rsh-server-0:0.17-25.3.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:rsh-server-0:0.17-25.3.x86_64" }, "product_reference": "rsh-server-0:0.17-25.3.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.i386" }, "product_reference": "rsh-0:0.17-25.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.ia64" }, "product_reference": "rsh-0:0.17-25.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.ppc" }, "product_reference": "rsh-0:0.17-25.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.s390" }, "product_reference": "rsh-0:0.17-25.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.s390x" }, "product_reference": "rsh-0:0.17-25.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.src" }, "product_reference": "rsh-0:0.17-25.3.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-0:0.17-25.3.x86_64" }, "product_reference": "rsh-0:0.17-25.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-debuginfo-0:0.17-25.3.i386" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-debuginfo-0:0.17-25.3.ia64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-debuginfo-0:0.17-25.3.ppc" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-debuginfo-0:0.17-25.3.s390" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-debuginfo-0:0.17-25.3.s390x" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-debuginfo-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-debuginfo-0:0.17-25.3.x86_64" }, "product_reference": "rsh-debuginfo-0:0.17-25.3.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-server-0:0.17-25.3.i386" }, "product_reference": "rsh-server-0:0.17-25.3.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-server-0:0.17-25.3.ia64" }, "product_reference": "rsh-server-0:0.17-25.3.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-server-0:0.17-25.3.ppc" }, "product_reference": "rsh-server-0:0.17-25.3.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-server-0:0.17-25.3.s390" }, "product_reference": "rsh-server-0:0.17-25.3.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-server-0:0.17-25.3.s390x" }, "product_reference": "rsh-server-0:0.17-25.3.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "rsh-server-0:0.17-25.3.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:rsh-server-0:0.17-25.3.x86_64" }, "product_reference": "rsh-server-0:0.17-25.3.x86_64", "relates_to_product_reference": "4WS" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "the MIT Kerberos project" ] } ], "cve": "CVE-2004-0175", "discovery_date": "2004-03-01T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1617166" } ], "notes": [ { "category": "description", "text": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "title": "Vulnerability description" }, { "category": "summary", "text": "security flaw", "title": "Vulnerability summary" }, { "category": "other", "text": "Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.", "title": "Statement" } ], "product_status": { "fixed": [ "4AS:rsh-0:0.17-25.3.i386", "4AS:rsh-0:0.17-25.3.ia64", "4AS:rsh-0:0.17-25.3.ppc", "4AS:rsh-0:0.17-25.3.s390", "4AS:rsh-0:0.17-25.3.s390x", "4AS:rsh-0:0.17-25.3.src", "4AS:rsh-0:0.17-25.3.x86_64", "4AS:rsh-debuginfo-0:0.17-25.3.i386", "4AS:rsh-debuginfo-0:0.17-25.3.ia64", "4AS:rsh-debuginfo-0:0.17-25.3.ppc", "4AS:rsh-debuginfo-0:0.17-25.3.s390", "4AS:rsh-debuginfo-0:0.17-25.3.s390x", "4AS:rsh-debuginfo-0:0.17-25.3.x86_64", "4AS:rsh-server-0:0.17-25.3.i386", "4AS:rsh-server-0:0.17-25.3.ia64", "4AS:rsh-server-0:0.17-25.3.ppc", "4AS:rsh-server-0:0.17-25.3.s390", "4AS:rsh-server-0:0.17-25.3.s390x", "4AS:rsh-server-0:0.17-25.3.x86_64", "4Desktop:rsh-0:0.17-25.3.i386", "4Desktop:rsh-0:0.17-25.3.ia64", "4Desktop:rsh-0:0.17-25.3.ppc", "4Desktop:rsh-0:0.17-25.3.s390", "4Desktop:rsh-0:0.17-25.3.s390x", "4Desktop:rsh-0:0.17-25.3.src", "4Desktop:rsh-0:0.17-25.3.x86_64", "4Desktop:rsh-debuginfo-0:0.17-25.3.i386", "4Desktop:rsh-debuginfo-0:0.17-25.3.ia64", "4Desktop:rsh-debuginfo-0:0.17-25.3.ppc", "4Desktop:rsh-debuginfo-0:0.17-25.3.s390", "4Desktop:rsh-debuginfo-0:0.17-25.3.s390x", "4Desktop:rsh-debuginfo-0:0.17-25.3.x86_64", "4Desktop:rsh-server-0:0.17-25.3.i386", "4Desktop:rsh-server-0:0.17-25.3.ia64", "4Desktop:rsh-server-0:0.17-25.3.ppc", "4Desktop:rsh-server-0:0.17-25.3.s390", "4Desktop:rsh-server-0:0.17-25.3.s390x", "4Desktop:rsh-server-0:0.17-25.3.x86_64", "4ES:rsh-0:0.17-25.3.i386", "4ES:rsh-0:0.17-25.3.ia64", "4ES:rsh-0:0.17-25.3.ppc", "4ES:rsh-0:0.17-25.3.s390", "4ES:rsh-0:0.17-25.3.s390x", "4ES:rsh-0:0.17-25.3.src", "4ES:rsh-0:0.17-25.3.x86_64", "4ES:rsh-debuginfo-0:0.17-25.3.i386", "4ES:rsh-debuginfo-0:0.17-25.3.ia64", "4ES:rsh-debuginfo-0:0.17-25.3.ppc", "4ES:rsh-debuginfo-0:0.17-25.3.s390", "4ES:rsh-debuginfo-0:0.17-25.3.s390x", "4ES:rsh-debuginfo-0:0.17-25.3.x86_64", "4ES:rsh-server-0:0.17-25.3.i386", "4ES:rsh-server-0:0.17-25.3.ia64", "4ES:rsh-server-0:0.17-25.3.ppc", "4ES:rsh-server-0:0.17-25.3.s390", "4ES:rsh-server-0:0.17-25.3.s390x", "4ES:rsh-server-0:0.17-25.3.x86_64", "4WS:rsh-0:0.17-25.3.i386", "4WS:rsh-0:0.17-25.3.ia64", "4WS:rsh-0:0.17-25.3.ppc", "4WS:rsh-0:0.17-25.3.s390", "4WS:rsh-0:0.17-25.3.s390x", "4WS:rsh-0:0.17-25.3.src", "4WS:rsh-0:0.17-25.3.x86_64", "4WS:rsh-debuginfo-0:0.17-25.3.i386", "4WS:rsh-debuginfo-0:0.17-25.3.ia64", "4WS:rsh-debuginfo-0:0.17-25.3.ppc", "4WS:rsh-debuginfo-0:0.17-25.3.s390", "4WS:rsh-debuginfo-0:0.17-25.3.s390x", "4WS:rsh-debuginfo-0:0.17-25.3.x86_64", "4WS:rsh-server-0:0.17-25.3.i386", "4WS:rsh-server-0:0.17-25.3.ia64", "4WS:rsh-server-0:0.17-25.3.ppc", "4WS:rsh-server-0:0.17-25.3.s390", "4WS:rsh-server-0:0.17-25.3.s390x", "4WS:rsh-server-0:0.17-25.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2004-0175" }, { "category": "external", "summary": "RHBZ#1617166", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617166" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0175", "url": "https://www.cve.org/CVERecord?id=CVE-2004-0175" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" } ], "release_date": "2000-09-01T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2005-06-08T15:01:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade. Only those\nRPMs which are currently installed will be updated. Those RPMs which are\nnot installed but included in the list will not be updated. Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network. Many\npeople find this an easier way to apply updates. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.\n\nIf up2date fails to connect to Red Hat Network due to SSL\nCertificate Errors, you need to install a version of the\nup2date client with an updated certificate. The latest version of\nup2date is available from the Red Hat FTP site and may also be\ndownloaded directly from the RHN website:\n\nhttps://rhn.redhat.com/help/latest-up2date.pxt", "product_ids": [ "4AS:rsh-0:0.17-25.3.i386", "4AS:rsh-0:0.17-25.3.ia64", "4AS:rsh-0:0.17-25.3.ppc", "4AS:rsh-0:0.17-25.3.s390", "4AS:rsh-0:0.17-25.3.s390x", "4AS:rsh-0:0.17-25.3.src", "4AS:rsh-0:0.17-25.3.x86_64", "4AS:rsh-debuginfo-0:0.17-25.3.i386", "4AS:rsh-debuginfo-0:0.17-25.3.ia64", "4AS:rsh-debuginfo-0:0.17-25.3.ppc", "4AS:rsh-debuginfo-0:0.17-25.3.s390", "4AS:rsh-debuginfo-0:0.17-25.3.s390x", "4AS:rsh-debuginfo-0:0.17-25.3.x86_64", "4AS:rsh-server-0:0.17-25.3.i386", "4AS:rsh-server-0:0.17-25.3.ia64", "4AS:rsh-server-0:0.17-25.3.ppc", "4AS:rsh-server-0:0.17-25.3.s390", "4AS:rsh-server-0:0.17-25.3.s390x", "4AS:rsh-server-0:0.17-25.3.x86_64", "4Desktop:rsh-0:0.17-25.3.i386", "4Desktop:rsh-0:0.17-25.3.ia64", "4Desktop:rsh-0:0.17-25.3.ppc", "4Desktop:rsh-0:0.17-25.3.s390", "4Desktop:rsh-0:0.17-25.3.s390x", "4Desktop:rsh-0:0.17-25.3.src", "4Desktop:rsh-0:0.17-25.3.x86_64", "4Desktop:rsh-debuginfo-0:0.17-25.3.i386", "4Desktop:rsh-debuginfo-0:0.17-25.3.ia64", "4Desktop:rsh-debuginfo-0:0.17-25.3.ppc", "4Desktop:rsh-debuginfo-0:0.17-25.3.s390", "4Desktop:rsh-debuginfo-0:0.17-25.3.s390x", "4Desktop:rsh-debuginfo-0:0.17-25.3.x86_64", "4Desktop:rsh-server-0:0.17-25.3.i386", "4Desktop:rsh-server-0:0.17-25.3.ia64", "4Desktop:rsh-server-0:0.17-25.3.ppc", "4Desktop:rsh-server-0:0.17-25.3.s390", "4Desktop:rsh-server-0:0.17-25.3.s390x", "4Desktop:rsh-server-0:0.17-25.3.x86_64", "4ES:rsh-0:0.17-25.3.i386", "4ES:rsh-0:0.17-25.3.ia64", "4ES:rsh-0:0.17-25.3.ppc", "4ES:rsh-0:0.17-25.3.s390", "4ES:rsh-0:0.17-25.3.s390x", "4ES:rsh-0:0.17-25.3.src", "4ES:rsh-0:0.17-25.3.x86_64", "4ES:rsh-debuginfo-0:0.17-25.3.i386", "4ES:rsh-debuginfo-0:0.17-25.3.ia64", "4ES:rsh-debuginfo-0:0.17-25.3.ppc", "4ES:rsh-debuginfo-0:0.17-25.3.s390", "4ES:rsh-debuginfo-0:0.17-25.3.s390x", "4ES:rsh-debuginfo-0:0.17-25.3.x86_64", "4ES:rsh-server-0:0.17-25.3.i386", "4ES:rsh-server-0:0.17-25.3.ia64", "4ES:rsh-server-0:0.17-25.3.ppc", "4ES:rsh-server-0:0.17-25.3.s390", "4ES:rsh-server-0:0.17-25.3.s390x", "4ES:rsh-server-0:0.17-25.3.x86_64", "4WS:rsh-0:0.17-25.3.i386", "4WS:rsh-0:0.17-25.3.ia64", "4WS:rsh-0:0.17-25.3.ppc", "4WS:rsh-0:0.17-25.3.s390", "4WS:rsh-0:0.17-25.3.s390x", "4WS:rsh-0:0.17-25.3.src", "4WS:rsh-0:0.17-25.3.x86_64", "4WS:rsh-debuginfo-0:0.17-25.3.i386", "4WS:rsh-debuginfo-0:0.17-25.3.ia64", "4WS:rsh-debuginfo-0:0.17-25.3.ppc", "4WS:rsh-debuginfo-0:0.17-25.3.s390", "4WS:rsh-debuginfo-0:0.17-25.3.s390x", "4WS:rsh-debuginfo-0:0.17-25.3.x86_64", "4WS:rsh-server-0:0.17-25.3.i386", "4WS:rsh-server-0:0.17-25.3.ia64", "4WS:rsh-server-0:0.17-25.3.ppc", "4WS:rsh-server-0:0.17-25.3.s390", "4WS:rsh-server-0:0.17-25.3.s390x", "4WS:rsh-server-0:0.17-25.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2005:165" } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "security flaw" } ] }
gsd-2004-0175
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2004-0175", "description": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "id": "GSD-2004-0175", "references": [ "https://www.suse.com/security/cve/CVE-2004-0175.html", "https://access.redhat.com/errata/RHSA-2005:567", "https://access.redhat.com/errata/RHSA-2005:562", "https://access.redhat.com/errata/RHSA-2005:495", "https://access.redhat.com/errata/RHSA-2005:481", "https://access.redhat.com/errata/RHSA-2005:165", "https://access.redhat.com/errata/RHSA-2005:106", "https://access.redhat.com/errata/RHSA-2005:074" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2004-0175" ], "details": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "id": "GSD-2004-0175", "modified": "2023-12-13T01:22:54.498767Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0175", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2005:165", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-165.html" }, { "name": "RHSA-2005:106", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-106.html" }, { "name": "RHSA-2005:567", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-567.html" }, { "name": "http://www.juniper.net/support/security/alerts/adv59739.txt", "refsource": "CONFIRM", "url": "http://www.juniper.net/support/security/alerts/adv59739.txt" }, { "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147" }, { "name": "RHSA-2005:495", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-495.html" }, { "name": "RHSA-2005:562", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-562.html" }, { "name": "MDVSA-2008:191", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:191" }, { "name": "SuSE-SA:2004:009", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2004_09_kernel.html" }, { "name": "MDKSA-2005:100", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:100" }, { "name": "19243", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19243" }, { "name": "openssh-scp-file-overwrite(16323)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16323" }, { "name": "oval:org.mitre.oval:def:10184", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184" }, { "name": "17135", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17135" }, { "name": "SCOSA-2006.11", "refsource": "SCO", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt" }, { "name": "RHSA-2005:074", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-074.html" }, { "name": "RHSA-2005:481", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2005-481.html" }, { "name": "9550", "refsource": "OSVDB", "url": "http://www.osvdb.org/9550" }, { "name": "CLSA-2004:831", "refsource": "CONECTIVA", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831" }, { "name": "O-212", "refsource": "CIAC", "url": "http://www.ciac.org/ciac/bulletins/o-212.shtml" }, { "name": "9986", "refsource": "BID", "url": "http://www.securityfocus.com/bid/9986" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.0.1p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.2.2p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.2.3p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.0p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.4p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.1p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.0.2p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:openbsd:openssh:3.3p1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0175" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-22" } ] } ] }, "references": { "reference_data": [ { "name": "9986", "refsource": "BID", "tags": [ "Patch", "Vendor Advisory" ], "url": "http://www.securityfocus.com/bid/9986" }, { "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147", "refsource": "CONFIRM", "tags": [], "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147" }, { "name": "http://www.juniper.net/support/security/alerts/adv59739.txt", "refsource": "CONFIRM", "tags": [], "url": "http://www.juniper.net/support/security/alerts/adv59739.txt" }, { "name": "CLSA-2004:831", "refsource": "CONECTIVA", "tags": [], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831" }, { "name": "SuSE-SA:2004:009", "refsource": "SUSE", "tags": [], "url": "http://www.novell.com/linux/security/advisories/2004_09_kernel.html" }, { "name": "RHSA-2005:106", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-106.html" }, { "name": "O-212", "refsource": "CIAC", "tags": [], "url": "http://www.ciac.org/ciac/bulletins/o-212.shtml" }, { "name": "RHSA-2005:074", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-074.html" }, { "name": "RHSA-2005:165", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-165.html" }, { "name": "RHSA-2005:481", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-481.html" }, { "name": "RHSA-2005:495", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-495.html" }, { "name": "RHSA-2005:562", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-562.html" }, { "name": "RHSA-2005:567", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2005-567.html" }, { "name": "SCOSA-2006.11", "refsource": "SCO", "tags": [], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt" }, { "name": "19243", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/19243" }, { "name": "17135", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/17135" }, { "name": "9550", "refsource": "OSVDB", "tags": [], "url": "http://www.osvdb.org/9550" }, { "name": "MDKSA-2005:100", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:100" }, { "name": "MDVSA-2008:191", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:191" }, { "name": "openssh-scp-file-overwrite(16323)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16323" }, { "name": "oval:org.mitre.oval:def:10184", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false } }, "lastModifiedDate": "2017-10-11T01:29Z", "publishedDate": "2004-08-18T04:00Z" } } }
ghsa-384q-pv6w-p8vv
Vulnerability from github
Published
2022-05-03 03:12
Modified
2022-05-03 03:12
Details
Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.
{ "affected": [], "aliases": [ "CVE-2004-0175" ], "database_specific": { "cwe_ids": [ "CWE-22" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2004-08-18T04:00:00Z", "severity": "MODERATE" }, "details": "Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.", "id": "GHSA-384q-pv6w-p8vv", "modified": "2022-05-03T03:12:58Z", "published": "2022-05-03T03:12:58Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0175" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=120147" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16323" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10184" }, { "type": "WEB", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000831" }, { "type": "WEB", "url": "http://secunia.com/advisories/17135" }, { "type": "WEB", "url": "http://secunia.com/advisories/19243" }, { "type": "WEB", "url": "http://www.ciac.org/ciac/bulletins/o-212.shtml" }, { "type": "WEB", "url": "http://www.juniper.net/support/security/alerts/adv59739.txt" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:100" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:191" }, { "type": "WEB", "url": "http://www.novell.com/linux/security/advisories/2004_09_kernel.html" }, { "type": "WEB", "url": "http://www.osvdb.org/9550" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-074.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-106.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-165.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-481.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-495.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-562.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2005-567.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/9986" } ], "schema_version": "1.4.0", "severity": [] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.