Описание
Security update for krb5
This update for krb5 fixes the following issues:
- CVE-2023-36054: Fixed a DoS that could be triggered by an authenticated remote user. (bsc#1214054)
Список пакетов
Container caasp/v4/cilium-operator:1.6.6
krb5-1.16.3-150100.3.30.1
Container caasp/v4/cilium:1.6.6
krb5-1.16.3-150100.3.30.1
Container suse/sle15:15.1
krb5-1.16.3-150100.3.30.1
Container suse/sle15:15.2
krb5-1.16.3-150100.3.30.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-BYOS-Azure
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-HPC-BYOS-Azure
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-Azure
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-BYOS-Azure
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-BYOS-GCE
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-EC2-HVM
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
Image SLES15-SP2-SAP-GCE
krb5-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
krb5-devel-1.16.3-150100.3.30.1
krb5-plugin-kdb-ldap-1.16.3-150100.3.30.1
krb5-plugin-preauth-otp-1.16.3-150100.3.30.1
krb5-plugin-preauth-pkinit-1.16.3-150100.3.30.1
krb5-server-1.16.3-150100.3.30.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
krb5-devel-1.16.3-150100.3.30.1
krb5-plugin-kdb-ldap-1.16.3-150100.3.30.1
krb5-plugin-preauth-otp-1.16.3-150100.3.30.1
krb5-plugin-preauth-pkinit-1.16.3-150100.3.30.1
krb5-server-1.16.3-150100.3.30.1
SUSE Linux Enterprise Server 15 SP1-LTSS
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
krb5-devel-1.16.3-150100.3.30.1
krb5-plugin-kdb-ldap-1.16.3-150100.3.30.1
krb5-plugin-preauth-otp-1.16.3-150100.3.30.1
krb5-plugin-preauth-pkinit-1.16.3-150100.3.30.1
krb5-server-1.16.3-150100.3.30.1
SUSE Linux Enterprise Server 15 SP2-LTSS
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
krb5-devel-1.16.3-150100.3.30.1
krb5-plugin-kdb-ldap-1.16.3-150100.3.30.1
krb5-plugin-preauth-otp-1.16.3-150100.3.30.1
krb5-plugin-preauth-pkinit-1.16.3-150100.3.30.1
krb5-server-1.16.3-150100.3.30.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
krb5-devel-1.16.3-150100.3.30.1
krb5-plugin-kdb-ldap-1.16.3-150100.3.30.1
krb5-plugin-preauth-otp-1.16.3-150100.3.30.1
krb5-plugin-preauth-pkinit-1.16.3-150100.3.30.1
krb5-server-1.16.3-150100.3.30.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
krb5-1.16.3-150100.3.30.1
krb5-32bit-1.16.3-150100.3.30.1
krb5-client-1.16.3-150100.3.30.1
krb5-devel-1.16.3-150100.3.30.1
krb5-plugin-kdb-ldap-1.16.3-150100.3.30.1
krb5-plugin-preauth-otp-1.16.3-150100.3.30.1
krb5-plugin-preauth-pkinit-1.16.3-150100.3.30.1
krb5-server-1.16.3-150100.3.30.1
Ссылки
- Link for SUSE-SU-2023:3434-1
- E-Mail link for SUSE-SU-2023:3434-1
- SUSE Security Ratings
- SUSE Bug 1214054
- SUSE CVE CVE-2023-36054 page
Описание
lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_key_data and the key_data array count.
Затронутые продукты
Container caasp/v4/cilium-operator:1.6.6:krb5-1.16.3-150100.3.30.1
Container caasp/v4/cilium:1.6.6:krb5-1.16.3-150100.3.30.1
Container suse/sle15:15.1:krb5-1.16.3-150100.3.30.1
Container suse/sle15:15.2:krb5-1.16.3-150100.3.30.1
Ссылки
- CVE-2023-36054
- SUSE Bug 1214054
- SUSE Bug 1217441
- SUSE Bug 1217443
- SUSE Bug 1218348
- SUSE Bug 1219472
- SUSE Bug 1219710