OVAL Reference oval:org.opensuse.security:def:202242898

Oval Definition:

oval:org.opensuse.security:def:202242898

Revision Date:	2023-06-22	Version:	1
Title:	CVE-2022-42898
Description:	PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."
Family:	unix	Class:	vulnerability
Status:		Reference(s):	Mitre CVE-2022-42898 SUSE CVE-2022-42898 SUSE-CU-2022:3071-1 SUSE-CU-2022:3072-1 SUSE-CU-2022:3073-1 SUSE-CU-2022:3074-1 SUSE-CU-2022:3075-1 SUSE-CU-2022:3076-1 SUSE-CU-2022:3077-1 SUSE-CU-2022:3078-1 SUSE-CU-2022:3079-1 SUSE-CU-2022:3088-1 SUSE-CU-2022:3095-1 SUSE-CU-2022:3096-1 SUSE-CU-2022:3097-1 SUSE-CU-2022:3098-1 SUSE-CU-2022:3099-1 SUSE-CU-2022:3100-1 SUSE-CU-2022:3101-1 SUSE-CU-2022:3102-1 SUSE-CU-2022:3103-1 SUSE-CU-2022:3104-1 SUSE-CU-2022:3105-1 SUSE-CU-2022:3106-1 SUSE-CU-2022:3107-1 SUSE-CU-2022:3108-1 SUSE-CU-2022:3111-1 SUSE-CU-2022:3112-1 SUSE-CU-2022:3113-1 SUSE-CU-2022:3131-1 SUSE-CU-2022:3145-1 SUSE-CU-2022:3151-1 SUSE-CU-2022:3186-1 SUSE-CU-2022:3191-1 SUSE-CU-2022:3192-1 SUSE-CU-2022:3269-1 SUSE-CU-2022:3313-1 SUSE-CU-2022:3314-1 SUSE-CU-2022:3372-1 SUSE-CU-2022:3374-1 SUSE-CU-2022:3376-1 SUSE-CU-2022:3378-1 SUSE-CU-2022:3380-1 SUSE-SU-2022:4153-1 SUSE-SU-2022:4154-1 SUSE-SU-2022:4155-1 SUSE-SU-2022:4167-1 SUSE-SU-2022:4335-1 SUSE-SU-2022:4395-1 SUSE-CU-2023:283-1 SUSE-CU-2023:321-1 SUSE-CU-2023:322-1 SUSE-CU-2023:323-1 SUSE-CU-2023:324-1 SUSE-IU-2022:1143-1 SUSE-IU-2022:1144-1 SUSE-IU-2022:1145-1 SUSE-IU-2022:1146-1 SUSE-IU-2022:1147-1 SUSE-IU-2022:1149-1 SUSE-IU-2023:139-1 SUSE-IU-2023:141-1 SUSE-IU-2023:142-1 SUSE-SU-2023:0081-1 SUSE-SU-2023:0160-1 SUSE-SU-2023:0198-1 openSUSE-SU-2023:0019-1 openSUSE-SU-2023:0020-1 SUSE-CU-2023:1103-1 SUSE-CU-2023:1104-1 SUSE-CU-2023:1105-1 SUSE-CU-2023:1229-1 SUSE-CU-2023:1231-1 SUSE-CU-2023:1234-1 SUSE-CU-2023:1236-1 SUSE-CU-2023:1261-1 SUSE-CU-2023:1262-1 SUSE-CU-2023:1338-1 SUSE-CU-2023:1498-1 SUSE-CU-2023:496-1 SUSE-CU-2023:498-1 SUSE-CU-2023:499-1 SUSE-CU-2023:500-1 SUSE-CU-2023:501-1 SUSE-CU-2023:502-1 SUSE-CU-2023:503-1 SUSE-CU-2023:504-1 SUSE-CU-2023:505-1 SUSE-CU-2023:506-1 SUSE-CU-2023:507-1 SUSE-CU-2023:508-1 SUSE-CU-2023:509-1 SUSE-CU-2023:510-1 SUSE-CU-2023:511-1 SUSE-IU-2023:158-1 SUSE-IU-2023:159-1 SUSE-IU-2023:164-1
Platform(s):	openSUSE Leap Micro 5.3 SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5	Product(s):
Definition Synopsis
openSUSE Leap Micro 5.3 is installed AND Package Information krb5-1.19.2-150400.3.3.1 is installed AND krb5 is signed with openSUSE key
Definition Synopsis
SUSE Linux Enterprise Micro 5.3 is installed AND Package Information krb5-1.19.2-150400.3.3.1 is installed OR samba-client-libs-4.15.13+git.591.ab36624310c-150400.3.19.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information krb5-1.20.1-150500.1.2 is installed OR krb5-32bit-1.20.1-150500.1.2 is installed OR krb5-client-1.20.1-150500.1.2 is installed OR krb5-devel-1.20.1-150500.1.2 is installed OR krb5-plugin-preauth-otp-1.20.1-150500.1.2 is installed OR krb5-plugin-preauth-pkinit-1.20.1-150500.1.2 is installed OR libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR libsamba-policy-python3-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR libsamba-policy0-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-ceph-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-client-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-client-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-client-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-gpupdate-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-ldb-ldap-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-libs-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-python3-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-winbind-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-winbind-libs-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed OR samba-winbind-libs-32bit-4.17.7+git.330.4057cd7a27a-150500.1.2 is installed

BACK