Revision Date: | 2022-06-30 | Version: | 1 |
Title: | CVE-2007-3999 |
Description: |
Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss.c in the RPCSEC_GSS RPC library (librpcsecgss) in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and some third-party applications that use krb5, allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long string in an RPC message.
|
Family: | unix | Class: | vulnerability |
Status: | | Reference(s): | CVE-2007-3999 Mitre CVE-2007-3999 SUSE CVE-2007-3999 SUSE-SR:2007:019 SUSE-SR:2007:019 SUSE-SR:2007:024 SUSE-SR:2007:024
|
Platform(s): | openSUSE 10.2 openSUSE 10.3 openSUSE Tumbleweed SUSE LINUX 10.0 SUSE LINUX 10.1 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1
| Product(s): | |
Definition Synopsis |
Release Information SUSE Linux Enterprise Desktop 12 is installed
OR SUSE Linux Enterprise Desktop 12 SP1 is installed
AND librpcsecgss3-0.19-16.56 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Server 12 is installed
OR SUSE Linux Enterprise Server 12 SP1 is installed
AND librpcsecgss3-0.19-16.56 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 is installed
AND librpcsecgss3-0.19-16 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1 is installed
AND librpcsecgss3-0.19-16 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Desktop 12 is installed
OR SUSE Linux Enterprise Desktop 12 SP1 is installed
OR SUSE Linux Enterprise Server 12 is installed
OR SUSE Linux Enterprise Server 12 SP1 is installed
AND librpcsecgss3-0.19-16 is installed
OR Package Information
SUSE Linux Enterprise Software Development Kit 12 is installed
OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND librpcsecgss-devel-0.19-16 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Desktop 12 is installed
AND librpcsecgss3-0.19-16.56 is installed
OR Package Information
SUSE Linux Enterprise Desktop 12 SP1 is installed
AND librpcsecgss3-0.19-16.56 is installed
OR Package Information
SUSE Linux Enterprise Server 12 is installed
AND librpcsecgss3-0.19-16.56 is installed
OR Package Information
SUSE Linux Enterprise Server 12 SP1 is installed
AND librpcsecgss3-0.19-16.56 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 11 SP3 is installed
AND Package Information
krb5-1.6.3-133.49.54 is installed
OR krb5-32bit-1.6.3-133.49.54 is installed
OR krb5-apps-clients-1.6.3-133.49.54 is installed
OR krb5-apps-servers-1.6.3-133.49.54 is installed
OR krb5-client-1.6.3-133.49.54 is installed
OR krb5-doc-1.6.3-133.49.54 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.54 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.54 is installed
OR krb5-server-1.6.3-133.49.54 is installed
OR krb5-x86-1.6.3-133.49.54 is installed
OR librpcsecgss-0.18-1 is installed
OR libtirpc1-0.2.1-1.5 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Server 11 SP2 is installed
AND
krb5-1.6.3-133.48.48.1 is installed
OR krb5-32bit-1.6.3-133.48.48.1 is installed
OR krb5-apps-clients-1.6.3-133.48.48.1 is installed
OR krb5-apps-servers-1.6.3-133.48.48.1 is installed
OR krb5-client-1.6.3-133.48.48.1 is installed
OR krb5-doc-1.6.3-133.21 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.12 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.12 is installed
OR krb5-server-1.6.3-133.48.48.1 is installed
OR krb5-x86-1.6.3-133.48.48.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
krb5-1.6.3-133.49.54.1 is installed
OR krb5-32bit-1.6.3-133.49.54.1 is installed
OR krb5-apps-clients-1.6.3-133.49.54.1 is installed
OR krb5-apps-servers-1.6.3-133.49.54.1 is installed
OR krb5-client-1.6.3-133.49.54.1 is installed
OR krb5-doc-1.6.3-133.49.54.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.54.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.54.1 is installed
OR krb5-server-1.6.3-133.49.54.1 is installed
OR krb5-x86-1.6.3-133.49.54.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP4 is installed
AND
krb5-1.6.3-133.49.66.1 is installed
OR krb5-32bit-1.6.3-133.49.66.1 is installed
OR krb5-apps-clients-1.6.3-133.49.66.1 is installed
OR krb5-apps-servers-1.6.3-133.49.66.1 is installed
OR krb5-client-1.6.3-133.49.66.1 is installed
OR krb5-doc-1.6.3-133.49.66.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.66.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.66.1 is installed
OR krb5-server-1.6.3-133.49.66.1 is installed
OR krb5-x86-1.6.3-133.49.66.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.7.1 is installed
OR Package Information
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
AND
krb5-devel-1.6.3-133.49.66.1 is installed
OR krb5-devel-32bit-1.6.3-133.49.66.1 is installed
OR krb5-server-1.6.3-133.49.66.1 is installed
OR libtirpc-devel-0.2.1-1.7.1 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Server 11 SP2 is installed
AND
krb5-1.6.3-133.48.48.1 is installed
OR krb5-32bit-1.6.3-133.48.48.1 is installed
OR krb5-apps-clients-1.6.3-133.48.48.1 is installed
OR krb5-apps-servers-1.6.3-133.48.48.1 is installed
OR krb5-client-1.6.3-133.48.48.1 is installed
OR krb5-doc-1.6.3-133.21 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.12 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.12 is installed
OR krb5-server-1.6.3-133.48.48.1 is installed
OR krb5-x86-1.6.3-133.48.48.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
krb5-1.6.3-133.49.54.1 is installed
OR krb5-32bit-1.6.3-133.49.54.1 is installed
OR krb5-apps-clients-1.6.3-133.49.54.1 is installed
OR krb5-apps-servers-1.6.3-133.49.54.1 is installed
OR krb5-client-1.6.3-133.49.54.1 is installed
OR krb5-doc-1.6.3-133.49.54.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.54.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.54.1 is installed
OR krb5-server-1.6.3-133.49.54.1 is installed
OR krb5-x86-1.6.3-133.49.54.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP4 is installed
AND
krb5-1.6.3-133.49.66.1 is installed
OR krb5-32bit-1.6.3-133.49.66.1 is installed
OR krb5-apps-clients-1.6.3-133.49.66.1 is installed
OR krb5-apps-servers-1.6.3-133.49.66.1 is installed
OR krb5-client-1.6.3-133.49.66.1 is installed
OR krb5-doc-1.6.3-133.49.66.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.66.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.66.1 is installed
OR krb5-server-1.6.3-133.49.66.1 is installed
OR krb5-x86-1.6.3-133.49.66.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.7.1 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
krb5-1.6.3-133.49.54.1 is installed
OR krb5-32bit-1.6.3-133.49.54.1 is installed
OR krb5-apps-clients-1.6.3-133.49.54.1 is installed
OR krb5-apps-servers-1.6.3-133.49.54.1 is installed
OR krb5-client-1.6.3-133.49.54.1 is installed
OR krb5-doc-1.6.3-133.49.54.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.54.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.54.1 is installed
OR krb5-server-1.6.3-133.49.54.1 is installed
OR krb5-x86-1.6.3-133.49.54.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP4 is installed
AND
krb5-1.6.3-133.49.66.1 is installed
OR krb5-32bit-1.6.3-133.49.66.1 is installed
OR krb5-apps-clients-1.6.3-133.49.66.1 is installed
OR krb5-apps-servers-1.6.3-133.49.66.1 is installed
OR krb5-client-1.6.3-133.49.66.1 is installed
OR krb5-doc-1.6.3-133.49.66.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.66.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.66.1 is installed
OR krb5-server-1.6.3-133.49.66.1 is installed
OR krb5-x86-1.6.3-133.49.66.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.7.1 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Server 11 SP1 is installed
AND
krb5-1.6.3-133.27 is installed
OR krb5-32bit-1.6.3-133.27 is installed
OR krb5-apps-clients-1.6.3-133.27 is installed
OR krb5-apps-servers-1.6.3-133.27 is installed
OR krb5-client-1.6.3-133.27 is installed
OR krb5-doc-1.6.3-133 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133 is installed
OR krb5-server-1.6.3-133.27 is installed
OR krb5-x86-1.6.3-133.27 is installed
OR librpcsecgss-0.18-1 is installed
OR libtirpc1-0.2.1-1.2 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP2 is installed
AND
krb5-1.6.3-133.48.48 is installed
OR krb5-32bit-1.6.3-133.48.48 is installed
OR krb5-apps-clients-1.6.3-133.48.48 is installed
OR krb5-apps-servers-1.6.3-133.48.48 is installed
OR krb5-client-1.6.3-133.48.48 is installed
OR krb5-doc-1.6.3-133 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133 is installed
OR krb5-server-1.6.3-133.48.48 is installed
OR krb5-x86-1.6.3-133.48.48 is installed
OR librpcsecgss-0.18-1 is installed
OR libtirpc1-0.2.1-1.5 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
krb5-1.6.3-133.49.54 is installed
OR krb5-32bit-1.6.3-133.49.54 is installed
OR krb5-apps-clients-1.6.3-133.49.54 is installed
OR krb5-apps-servers-1.6.3-133.49.54 is installed
OR krb5-client-1.6.3-133.49.54 is installed
OR krb5-doc-1.6.3-133.49.54 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.54 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.54 is installed
OR krb5-server-1.6.3-133.49.54 is installed
OR krb5-x86-1.6.3-133.49.54 is installed
OR librpcsecgss-0.18-1 is installed
OR libtirpc1-0.2.1-1.5 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP4 is installed
AND
krb5-1.6.3-133.49.66 is installed
OR krb5-32bit-1.6.3-133.49.66 is installed
OR krb5-apps-clients-1.6.3-133.49.66 is installed
OR krb5-apps-servers-1.6.3-133.49.66 is installed
OR krb5-client-1.6.3-133.49.66 is installed
OR krb5-doc-1.6.3-133.49.66 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.66 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.66 is installed
OR krb5-server-1.6.3-133.49.66 is installed
OR krb5-x86-1.6.3-133.49.66 is installed
OR librpcsecgss-0.18-1 is installed
OR libtirpc1-0.2.1-1.7 is installed
OR Package Information
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
AND
krb5-devel-1.6.3-133.49.66 is installed
OR krb5-devel-32bit-1.6.3-133.49.66 is installed
OR krb5-server-1.6.3-133.49.66 is installed
OR libtirpc-devel-0.2.1-1.7 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Server 11 SP1 is installed
AND
krb5-1.6.3-133.27.1 is installed
OR krb5-32bit-1.6.3-133.27.1 is installed
OR krb5-apps-clients-1.6.3-133.27.1 is installed
OR krb5-apps-servers-1.6.3-133.27.1 is installed
OR krb5-client-1.6.3-133.27.1 is installed
OR krb5-doc-1.6.3-133.21 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.12 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.12 is installed
OR krb5-server-1.6.3-133.27.1 is installed
OR krb5-x86-1.6.3-133.27.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.2.16 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP2 is installed
AND
krb5-1.6.3-133.48.48.1 is installed
OR krb5-32bit-1.6.3-133.48.48.1 is installed
OR krb5-apps-clients-1.6.3-133.48.48.1 is installed
OR krb5-apps-servers-1.6.3-133.48.48.1 is installed
OR krb5-client-1.6.3-133.48.48.1 is installed
OR krb5-doc-1.6.3-133.21 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.12 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.12 is installed
OR krb5-server-1.6.3-133.48.48.1 is installed
OR krb5-x86-1.6.3-133.48.48.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP4 is installed
AND
krb5-1.6.3-133.49.66.1 is installed
OR krb5-32bit-1.6.3-133.49.66.1 is installed
OR krb5-apps-clients-1.6.3-133.49.66.1 is installed
OR krb5-apps-servers-1.6.3-133.49.66.1 is installed
OR krb5-client-1.6.3-133.49.66.1 is installed
OR krb5-doc-1.6.3-133.49.66.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.66.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.66.1 is installed
OR krb5-server-1.6.3-133.49.66.1 is installed
OR krb5-x86-1.6.3-133.49.66.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.7.1 is installed
OR Package Information
SUSE Linux Enterprise Server 11 SP3 is installed
AND
krb5-1.6.3-133.49.54.1 is installed
OR krb5-32bit-1.6.3-133.49.54.1 is installed
OR krb5-apps-clients-1.6.3-133.49.54.1 is installed
OR krb5-apps-servers-1.6.3-133.49.54.1 is installed
OR krb5-client-1.6.3-133.49.54.1 is installed
OR krb5-doc-1.6.3-133.49.54.1 is installed
OR krb5-plugin-kdb-ldap-1.6.3-133.49.54.1 is installed
OR krb5-plugin-preauth-pkinit-1.6.3-133.49.54.1 is installed
OR krb5-server-1.6.3-133.49.54.1 is installed
OR krb5-x86-1.6.3-133.49.54.1 is installed
OR librpcsecgss-0.18-1.15 is installed
OR libtirpc1-0.2.1-1.5.1 is installed
|
Definition Synopsis |
openSUSE Tumbleweed is installed
AND Package Information
krb5-1.19.2-2.2 is installed
OR krb5-32bit-1.19.2-2.2 is installed
OR krb5-client-1.19.2-2.2 is installed
OR krb5-devel-1.19.2-2.2 is installed
OR krb5-devel-32bit-1.19.2-2.2 is installed
OR krb5-plugin-kdb-ldap-1.19.2-2.2 is installed
OR krb5-plugin-preauth-otp-1.19.2-2.2 is installed
OR krb5-plugin-preauth-pkinit-1.19.2-2.2 is installed
OR krb5-plugin-preauth-spake-1.19.2-2.2 is installed
OR krb5-server-1.19.2-2.2 is installed
OR libtirpc-devel-1.3.2-2.1 is installed
OR libtirpc-netconfig-1.3.2-2.1 is installed
OR libtirpc3-1.3.2-2.1 is installed
OR libtirpc3-32bit-1.3.2-2.1 is installed
|
Definition Synopsis |
Release Information
SUSE Linux Enterprise Desktop 12 is installed
OR SUSE Linux Enterprise Desktop 12 SP1 is installed
OR SUSE Linux Enterprise Server 12 is installed
OR SUSE Linux Enterprise Server 12 SP1 is installed
AND librpcsecgss3-0.19-16.56 is installed
OR Package Information
SUSE Linux Enterprise Software Development Kit 12 is installed
OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
AND librpcsecgss-devel-0.19-16.56 is installed
|