Описание
Security update for krb5
This update for krb5 fixes the following issues:
Security issues fixed:
- CVE-2018-5729, CVE-2018-5730: Fixed multiple flaws in LDAP DN checking (bsc#1083926, bsc#1083927)
Список пакетов
Container suse/sle15:15.0
krb5-1.15.2-6.6.2
Image SLES15-Azure-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-EC2-CHOST-HVM-BYOS
krb5-1.15.2-6.6.2
Image SLES15-EC2-HVM-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-GCE-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-OCI-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-Azure
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-Azure-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-Azure-LI-BYOS-Production
krb5-1.15.2-6.6.2
krb5-32bit-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-Azure-VLI-BYOS-Production
krb5-1.15.2-6.6.2
krb5-32bit-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-EC2-HVM
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-EC2-HVM-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-GCE
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-GCE-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
Image SLES15-SAP-OCI-BYOS
krb5-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
SUSE Linux Enterprise Module for Basesystem 15
krb5-1.15.2-6.6.2
krb5-32bit-1.15.2-6.6.2
krb5-client-1.15.2-6.6.2
krb5-devel-1.15.2-6.6.2
krb5-plugin-preauth-otp-1.15.2-6.6.2
krb5-plugin-preauth-pkinit-1.15.2-6.6.2
SUSE Linux Enterprise Module for Server Applications 15
krb5-plugin-kdb-ldap-1.15.2-6.6.2
krb5-server-1.15.2-6.6.2
Ссылки
- Link for SUSE-SU-2019:0175-1
- E-Mail link for SUSE-SU-2019:0175-1
- SUSE Security Ratings
- SUSE Bug 1083926
- SUSE Bug 1083927
- SUSE CVE CVE-2018-5729 page
- SUSE CVE CVE-2018-5730 page
Описание
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module.
Затронутые продукты
Container suse/sle15:15.0:krb5-1.15.2-6.6.2
Image SLES15-Azure-BYOS:krb5-1.15.2-6.6.2
Image SLES15-Azure-BYOS:krb5-client-1.15.2-6.6.2
Image SLES15-EC2-CHOST-HVM-BYOS:krb5-1.15.2-6.6.2
Ссылки
- CVE-2018-5729
- SUSE Bug 1076211
- SUSE Bug 1083926
- SUSE Bug 1122468
Описание
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership check by supplying both a "linkdn" and "containerdn" database argument, or by supplying a DN string which is a left extension of a container DN string but is not hierarchically within the container DN.
Затронутые продукты
Container suse/sle15:15.0:krb5-1.15.2-6.6.2
Image SLES15-Azure-BYOS:krb5-1.15.2-6.6.2
Image SLES15-Azure-BYOS:krb5-client-1.15.2-6.6.2
Image SLES15-EC2-CHOST-HVM-BYOS:krb5-1.15.2-6.6.2
Ссылки
- CVE-2018-5730
- SUSE Bug 1076211
- SUSE Bug 1083927
- SUSE Bug 1122468