Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:4153-1

Опубликовано: 21 нояб. 2022
Источник: suse-cvrf

Описание

Security update for krb5

This update for krb5 fixes the following issues:

  • CVE-2022-42898: Fixed integer overflow in PAC parsing (bsc#1205126).

Список пакетов

Container bci/bci-init:15.4
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:3.1
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:5.0
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:6.0
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:latest
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-runtime:3.1
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-runtime:5.0
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-runtime:6.0
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-runtime:latest
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-sdk:3.1
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-sdk:5.0
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-sdk:6.0
krb5-1.19.2-150400.3.3.1
Container bci/dotnet-sdk:latest
krb5-1.19.2-150400.3.3.1
Container bci/golang:1.16
krb5-1.19.2-150400.3.3.1
Container bci/golang:1.17
krb5-1.19.2-150400.3.3.1
Container bci/golang:1.18
krb5-1.19.2-150400.3.3.1
Container bci/golang:1.19
krb5-1.19.2-150400.3.3.1
Container bci/golang:latest
krb5-1.19.2-150400.3.3.1
Container bci/node:14
krb5-1.19.2-150400.3.3.1
Container bci/node:16
krb5-1.19.2-150400.3.3.1
Container bci/nodejs:latest
krb5-1.19.2-150400.3.3.1
Container bci/openjdk-devel:11
krb5-1.19.2-150400.3.3.1
Container bci/openjdk-devel:latest
krb5-1.19.2-150400.3.3.1
Container bci/openjdk:11
krb5-1.19.2-150400.3.3.1
Container bci/openjdk:latest
krb5-1.19.2-150400.3.3.1
Container bci/php-apache:8
krb5-1.19.2-150400.3.3.1
Container bci/php-fpm:8
krb5-1.19.2-150400.3.3.1
Container bci/php:8
krb5-1.19.2-150400.3.3.1
Container bci/python:3
krb5-1.19.2-150400.3.3.1
Container bci/python:latest
krb5-1.19.2-150400.3.3.1
Container bci/ruby:latest
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.59
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.60
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.61
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.62
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.63
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.64
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.65
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.66
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.67
krb5-1.19.2-150400.3.3.1
Container bci/rust:1.68
krb5-1.19.2-150400.3.3.1
Container bci/rust:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-builder-image/5.3:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-operator/5.3:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-operator:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-teal-iso/5.3:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-teal-iso/5.4:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-teal-rt/5.3:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-teal-rt/5.4:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-teal/5.3:latest
krb5-1.19.2-150400.3.3.1
Container rancher/elemental-teal/5.4:latest
krb5-1.19.2-150400.3.3.1
Container rancher/seedimage-builder/5.3:latest
krb5-1.19.2-150400.3.3.1
Container rancher/seedimage-builder:latest
krb5-1.19.2-150400.3.3.1
Container suse/389-ds:latest
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Container suse/ltss/sle15.4/bci-base:latest
krb5-1.19.2-150400.3.3.1
Container suse/manager/4.3/proxy-httpd:latest
krb5-1.19.2-150400.3.3.1
Container suse/manager/4.3/proxy-salt-broker:latest
krb5-1.19.2-150400.3.3.1
Container suse/manager/4.3/proxy-squid:latest
krb5-1.19.2-150400.3.3.1
Container suse/manager/4.3/proxy-ssh:latest
krb5-1.19.2-150400.3.3.1
Container suse/manager/4.3/proxy-tftpd:latest
krb5-1.19.2-150400.3.3.1
Container suse/pcp:5
krb5-1.19.2-150400.3.3.1
Container suse/postgres:12
krb5-1.19.2-150400.3.3.1
Container suse/postgres:13
krb5-1.19.2-150400.3.3.1
Container suse/postgres:14
krb5-1.19.2-150400.3.3.1
Container suse/postgres:latest
krb5-1.19.2-150400.3.3.1
Container suse/registry:latest
krb5-1.19.2-150400.3.3.1
Container suse/rmt-mariadb-client:latest
krb5-1.19.2-150400.3.3.1
Container suse/rmt-mariadb:latest
krb5-1.19.2-150400.3.3.1
Container suse/rmt-nginx:latest
krb5-1.19.2-150400.3.3.1
Container suse/rmt-server:latest
krb5-1.19.2-150400.3.3.1
Container suse/sle-micro-rancher/5.3:latest
krb5-1.19.2-150400.3.3.1
Container suse/sle-micro-rancher/5.4:latest
krb5-1.19.2-150400.3.3.1
Container suse/sle-micro/5.3/toolbox:latest
krb5-1.19.2-150400.3.3.1
Container suse/sle-micro/5.4/toolbox:latest
krb5-1.19.2-150400.3.3.1
Container suse/sle15:15.4
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Azure-Basic
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Azure-Standard
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-CHOST-BYOS
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-CHOST-BYOS-Aliyun
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-CHOST-BYOS-Azure
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-CHOST-BYOS-EC2
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-CHOST-BYOS-GCE
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-CHOST-BYOS-SAP-CCloud
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-EC2-ECS-HVM
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-HPC-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Hardened-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-Azure-llc
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-Azure-ltd
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-EC2-llc
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Manager-Server-4-3-EC2-ltd
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-Azure
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-BYOS
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-BYOS-Azure
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-BYOS-EC2
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-BYOS-GCE
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-EC2
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-3-GCE
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-Azure
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-BYOS
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-BYOS-Azure
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-BYOS-EC2
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-BYOS-GCE
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-EC2
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-Micro-5-4-GCE
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Azure
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-EC2
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-GCE
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-EC2
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAP-Hardened-GCE
krb5-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAPCAL
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAPCAL-Azure
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAPCAL-EC2
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SAPCAL-GCE
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
Image SLES15-SP4-SUSE-Rancher-Setup-BYOS
krb5-1.19.2-150400.3.3.1
Image SLES15-SP4-SUSE-Rancher-Setup-BYOS-EC2
krb5-1.19.2-150400.3.3.1
SUSE Linux Enterprise Micro 5.3
krb5-1.19.2-150400.3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
krb5-devel-1.19.2-150400.3.3.1
krb5-plugin-preauth-otp-1.19.2-150400.3.3.1
krb5-plugin-preauth-pkinit-1.19.2-150400.3.3.1
SUSE Linux Enterprise Module for Server Applications 15 SP4
krb5-plugin-kdb-ldap-1.19.2-150400.3.3.1
krb5-server-1.19.2-150400.3.3.1
openSUSE Leap 15.4
krb5-1.19.2-150400.3.3.1
krb5-32bit-1.19.2-150400.3.3.1
krb5-client-1.19.2-150400.3.3.1
krb5-devel-1.19.2-150400.3.3.1
krb5-devel-32bit-1.19.2-150400.3.3.1
krb5-plugin-kdb-ldap-1.19.2-150400.3.3.1
krb5-plugin-preauth-otp-1.19.2-150400.3.3.1
krb5-plugin-preauth-pkinit-1.19.2-150400.3.3.1
krb5-plugin-preauth-spake-1.19.2-150400.3.3.1
krb5-server-1.19.2-150400.3.3.1
openSUSE Leap Micro 5.3
krb5-1.19.2-150400.3.3.1

Ссылки

Описание

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

Затронутые продукты
Container bci/bci-init:15.4:krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:3.1:krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:5.0:krb5-1.19.2-150400.3.3.1
Container bci/dotnet-aspnet:6.0:krb5-1.19.2-150400.3.3.1
Ссылки
Уязвимость SUSE-SU-2022:4153-1