HP has provided the following web updates and patches to resolve the vulnerabilities.
The web updates are available from the following location.
http://software.hp.com
The patches are available from the following location.
http://itrc.hp.com
For Kerberos Web Update (KRB5CLIENT)
HP-UX Release
|
Upgrade
|
B.11.11 (11i v1)
|
KRB5CLIENT_C.1.3.5.09_HP-UX_B.11.11_32_64.depot or subsequent
|
B.11.23 (11i v2)
|
KRB5CLIENT_D.1.6.2.01_HP-UX_B.11.23_IA_PA.depot or subsequent
|
B.11.31 (11i v3)
|
KRB5CLIENT_E.1.6.2.03_HP-UX_B.11.31_IA_PA.depot or subsequent
|
For Kerberos Client Product in Core-OS (KRB5-Client)
HP-UX Release
|
Patch ID
|
B.11.11 (11i v1)
|
PHSS_39774 or subsequent
|
B.11.23 (11i v2)
|
PHSS_39765 or subsequent
|
B.11.31 (11i v3)
|
PHSS_39766 or subsequent
|
MANUAL ACTIONS:
Yes - NonUpdate
PRODUCT SPECIFIC INFORMATION
HP-UX Software Assistant:
HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see:
https://www.hp.com/go/swa
The following text is for use by the HP-UX Software Assistant.
AFFECTED VERSIONS
HP-UX B.11.11
==================
krb5client.KRB5-64SLIB-A
krb5client.KRB5-PRG-A
krb5client.KRB5-RUN-A
krb5client.KRB5-SHLIB-A
action: install revision C.1.3.5.09 or subsequent
URL
http://software.hp.com
HP-UX B.11.23
==================
krb5client.KRB5-64SLIB-A
krb5client.KRB5-64SLIB-A
krb5client.KRB5-PRG-A
krb5client.KRB5-RUN-A
krb5client.KRB5-SHLIB-A
krb5client.KRB5IA32SLIB-A
krb5client.KRB5IA64SLIB-A
action: install revision D.1.6.2.01 or subsequent
URL
http://software.hp.com
HP-UX B.11.31
==================
krb5client.KRB5-64SLIB-A
krb5client.KRB5-PRG-A
krb5client.KRB5-RUN-A
krb5client.KRB5-SHLIB-A
krb5client.KRB5IA32SLIB-A
krb5client.KRB5IA64SLIB-A
action: install revision E.1.6.2.03 or subsequent
URL
http://software.hp.com
HP-UX B.11.11
==================
KRB5-Client.KRB5-SHLIB
KRB5-Client.KRB5-PRG
KRB5-Client.KRB5-RUN
KRB5-Client.KRB5-64SLIB
action: install PHSS_39774 or subsequent
URL
http://itrc.hp.com
HP-UX B.11.23
==================
KRB5-Client.KRB5-PRG
KRB5-Client.KRB5-64SLIB
KRB5-Client.KRB5-IA32SLIB
KRB5-Client.KRB5-IA64SLIB
KRB5-Client.KRB5-RUN
KRB5-Client.KRB5-SHLIB
KRB5-Client.KRB5-64SLIB
KRB5-Client.KRB5-RUN
KRB5-Client.KRB5-SHLIB
action: install PHSS_39765 or subsequent
URL
http://itrc.hp.com
HP-UX B.11.31
==================
KRB5-Client.KRB5-PRG
KRB5-Client.KRB5-64SLIB
KRB5-Client.KRB5-IA32SLIB
KRB5-Client.KRB5-IA64SLIB
KRB5-Client.KRB5-RUN
KRB5-Client.KRB5-SHLIB
KRB5-Client.KRB5-64SLIB
KRB5-Client.KRB5-RUN
KRB5-Client.KRB5-SHLIB
action: install PHSS_39766 or subsequent
URL
http://itrc.hp.com
END AFFECTED VERSIONS
HISTORY
Version:1 (rev.1) 29 July 2009 Initial release
Version:2 (rev.2) 30 Sept 2009 Updated Resolution to include patches to core product
Third Party Security Patches:
Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.