Описание
Security update for krb5
The krb5 package was updated to fix the following security and non security issues:
- CVE-2015-2695: Fixed missing functions that were still vulnerable (bsc#954270).
- Fixed a memory leak in the handling of error messages (bsc#954470).
Список пакетов
SUSE Linux Enterprise Desktop 11 SP3
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
SUSE Linux Enterprise Desktop 11 SP4
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
SUSE Linux Enterprise Server 11 SP3
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-apps-clients-1.6.3-133.49.103.1
krb5-apps-servers-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
krb5-x86-1.6.3-133.49.103.1
SUSE Linux Enterprise Server 11 SP3-TERADATA
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-apps-clients-1.6.3-133.49.103.1
krb5-apps-servers-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
krb5-x86-1.6.3-133.49.103.1
SUSE Linux Enterprise Server 11 SP4
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-apps-clients-1.6.3-133.49.103.1
krb5-apps-servers-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
krb5-x86-1.6.3-133.49.103.1
SUSE Linux Enterprise Server for SAP Applications 11 SP3
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-apps-clients-1.6.3-133.49.103.1
krb5-apps-servers-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
krb5-x86-1.6.3-133.49.103.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
krb5-1.6.3-133.49.103.1
krb5-32bit-1.6.3-133.49.103.1
krb5-apps-clients-1.6.3-133.49.103.1
krb5-apps-servers-1.6.3-133.49.103.1
krb5-client-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
krb5-x86-1.6.3-133.49.103.1
SUSE Linux Enterprise Software Development Kit 11 SP3
krb5-devel-1.6.3-133.49.103.1
krb5-devel-32bit-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
SUSE Linux Enterprise Software Development Kit 11 SP4
krb5-devel-1.6.3-133.49.103.1
krb5-devel-32bit-1.6.3-133.49.103.1
krb5-server-1.6.3-133.49.103.1
Ссылки
- Link for SUSE-SU-2015:2294-1
- E-Mail link for SUSE-SU-2015:2294-1
- SUSE Security Ratings
- SUSE Bug 954270
- SUSE Bug 954470
- SUSE CVE CVE-2015-2695 page
Описание
lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that is mishandled during a gss_inquire_context call.
Затронутые продукты
SUSE Linux Enterprise Desktop 11 SP3:krb5-1.6.3-133.49.103.1
SUSE Linux Enterprise Desktop 11 SP3:krb5-32bit-1.6.3-133.49.103.1
SUSE Linux Enterprise Desktop 11 SP3:krb5-client-1.6.3-133.49.103.1
SUSE Linux Enterprise Desktop 11 SP4:krb5-1.6.3-133.49.103.1
Ссылки
- CVE-2015-2695
- SUSE Bug 770172
- SUSE Bug 952188
- SUSE Bug 969771