Описание
Security update for krb5
This update for krb5 fixes the following security issue:
- CVE-2020-28196: Fixed an unbounded recursion via an ASN.1-encoded Kerberos message (bsc#1178512).
Список пакетов
Container suse/sle15:15.0
krb5-1.15.2-6.12.2
Image SLES15-Azure-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-EC2-CHOST-HVM-BYOS
krb5-1.15.2-6.12.2
Image SLES15-EC2-HVM-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-GCE-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-OCI-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-Azure
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-Azure-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-Azure-LI-BYOS-Production
krb5-1.15.2-6.12.2
krb5-32bit-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-Azure-VLI-BYOS-Production
krb5-1.15.2-6.12.2
krb5-32bit-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-EC2-HVM
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-EC2-HVM-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-GCE
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-GCE-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
Image SLES15-SAP-OCI-BYOS
krb5-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
SUSE Linux Enterprise High Performance Computing 15-ESPOS
krb5-1.15.2-6.12.2
krb5-32bit-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
krb5-devel-1.15.2-6.12.2
krb5-plugin-kdb-ldap-1.15.2-6.12.2
krb5-plugin-preauth-otp-1.15.2-6.12.2
krb5-plugin-preauth-pkinit-1.15.2-6.12.2
krb5-server-1.15.2-6.12.2
SUSE Linux Enterprise High Performance Computing 15-LTSS
krb5-1.15.2-6.12.2
krb5-32bit-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
krb5-devel-1.15.2-6.12.2
krb5-plugin-kdb-ldap-1.15.2-6.12.2
krb5-plugin-preauth-otp-1.15.2-6.12.2
krb5-plugin-preauth-pkinit-1.15.2-6.12.2
krb5-server-1.15.2-6.12.2
SUSE Linux Enterprise Server 15-LTSS
krb5-1.15.2-6.12.2
krb5-32bit-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
krb5-devel-1.15.2-6.12.2
krb5-plugin-kdb-ldap-1.15.2-6.12.2
krb5-plugin-preauth-otp-1.15.2-6.12.2
krb5-plugin-preauth-pkinit-1.15.2-6.12.2
krb5-server-1.15.2-6.12.2
SUSE Linux Enterprise Server for SAP Applications 15
krb5-1.15.2-6.12.2
krb5-32bit-1.15.2-6.12.2
krb5-client-1.15.2-6.12.2
krb5-devel-1.15.2-6.12.2
krb5-plugin-kdb-ldap-1.15.2-6.12.2
krb5-plugin-preauth-otp-1.15.2-6.12.2
krb5-plugin-preauth-pkinit-1.15.2-6.12.2
krb5-server-1.15.2-6.12.2
Ссылки
- Link for SUSE-SU-2020:3375-1
- E-Mail link for SUSE-SU-2020:3375-1
- SUSE Security Ratings
- SUSE Bug 1178512
- SUSE CVE CVE-2020-28196 page
Описание
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
Затронутые продукты
Container suse/sle15:15.0:krb5-1.15.2-6.12.2
Image SLES15-Azure-BYOS:krb5-1.15.2-6.12.2
Image SLES15-Azure-BYOS:krb5-client-1.15.2-6.12.2
Image SLES15-EC2-CHOST-HVM-BYOS:krb5-1.15.2-6.12.2
Ссылки
- CVE-2020-28196
- SUSE Bug 1178512
- SUSE Bug 1183911