The following defect(s) have been fixed in this cumulative patch for the krb5:
WIND00314539 Security Advisory - krb5 - CVE-2011-1527
WIND00322937 Security Advisory - krb5 - CVE-2011-1530
WIND00328006 Security Advisory - krb5 - CVE-2011-4862
----------------------------------------------------------------------------------------
Change List:
/layers/wrll-wrlinux/dist/krb5/Makefile
/layers/wrll-wrlinux/dist/krb5/krb5.spec
/layers/wrll-wrlinux/dist/krb5/patches/rpm_patches.list
/layers/wrll-wrlinux/dist/krb5/patches/krb5-CVE-2011-1530.patch
/layers/wrll-wrlinux/dist/krb5/patches/krb5-CVE-2011-1527.patch
/layers/wrll-wrlinux/dist/krb5/patches/krb5-wr-integration.patch
/layers/wrll-wrlinux/dist/krb5/patches/0001-krb5-fix-CVE-2011-4862.patch
Requires Wind River Linux Secure 1.0 to be installed
1. Unzip this patch under [install_dir]/updates
2. From the [install_dir]/updates directory, run the command "../maintenance/wrInstaller/x86-linux2/wrInstaller"
3. Follow the instructions for installing the point patch.
4. This is a source only patch so you will have to rebuild the krb5 package. This can be done by executing the command "make -C build krb5.distclean" followed by "make -C build krb5.rebuild"
5. Run "make fs" next
6. Upload the kernel and rootfs into the target and boot it up.
DATE: 30 May 2012
REVISION: file WRLS_1_0-base-tgt-krb5-20120216-spin1.zip replaced with WRLS_1_0-base-tgt-krb5-20120506-spin1.zip and includes fix to defect WIND00328006
DATE: 06 Mar 2012
REVISION: file WRLS_1_0-base-tgt-krb5-20120131-spin1.zip replaced with WRLS_1_0-base-tgt-krb5-20120216-spin1.zip and includes fix to defect WIND00322937
DATE: 03 Feb 2012
REVISION: Add file WRLS_1_0-base-tgt-krb5-20120131-spin1.zip and includes fix to defect WIND00314539
