Oval Definition:oval:org.opensuse.security:def:55673
Revision Date:2020-12-01Version:1
Title:Security update for krb5 (Moderate)
Description:



This update for krb5 fixes the following issues:

- CVE-2015-8629: Information leak authenticated attackers with permissions to modify the database (bsc#963968) - CVE-2015-8630: An authenticated attacker with permission to modify a principal entry may have caused kadmind to crash (bsc#963964) - CVE-2015-8631: An authenticated attacker could have caused a memory leak in auditd by supplying a null principal name in request (bsc#963975)
Family:unixClass:patch
Status:Reference(s):1003077
1008842
1009682
1011348
1012620
1012985
1015703
1015787
1015821
1017512
1018100
1018263
1018419
1018446
1019168
1019514
1020048
1020795
1021256
1021374
1021762
1021913
1022062
1022559
1022971
1023164
1023207
1023377
1023762
1023824
1023888
1023992
1024081
1024234
1024309
1024508
1024788
1025039
1025235
1025354
1025802
1026024
1026722
1026914
1027066
1027178
1027189
1027190
1027974
1028041
1028415
1028595
1028648
1028744
1028895
1029470
1029850
1029986
1030118
1030213
1030593
1030901
1031003
1031052
1031080
1031440
1031567
1031579
1031662
1031842
1032089
1032125
1032141
1032344
1032345
1033336
1034670
103470
1034700
1035576
1035699
1035738
1035877
1036752
1037008
1037009
1038261
1039513
1044016
1050947
1059134
1059139
1061305
1083125
1085447
1090368
1090646
1120653
1120654
1124341
1124342
1129231
1155079
799133
857926
862288
887580
914939
915410
917630
922853
929678
930399
931620
931698
934489
934491
937444
940946
953516
953519
953521
954763
963964
963968
963975
968697
970083
971933
979215
982783
983212
984530
985561
988065
988274
989056
993832
CVE-2009-3627
CVE-2011-1831
CVE-2011-1832
CVE-2011-1833
CVE-2011-1834
CVE-2011-1835
CVE-2011-1836
CVE-2011-1837
CVE-2013-0156
CVE-2014-0497
CVE-2014-2484
CVE-2014-2494
CVE-2014-4207
CVE-2014-4214
CVE-2014-4233
CVE-2014-4238
CVE-2014-4240
CVE-2014-4243
CVE-2014-4258
CVE-2014-4260
CVE-2014-9512
CVE-2014-9756
CVE-2015-1350
CVE-2015-1789
CVE-2015-1790
CVE-2015-4000
CVE-2015-7805
CVE-2015-8075
CVE-2015-8629
CVE-2015-8630
CVE-2015-8631
CVE-2016-10044
CVE-2016-10200
CVE-2016-10208
CVE-2016-10209
CVE-2016-10349
CVE-2016-10350
CVE-2016-2117
CVE-2016-3070
CVE-2016-5243
CVE-2016-7117
CVE-2016-9191
CVE-2016-9588
CVE-2016-9604
CVE-2017-11671
CVE-2017-13166
CVE-2017-14501
CVE-2017-14502
CVE-2017-14988
CVE-2017-2647
CVE-2017-2671
CVE-2017-5669
CVE-2017-5897
CVE-2017-5986
CVE-2017-6074
CVE-2017-6214
CVE-2017-6345
CVE-2017-6346
CVE-2017-6348
CVE-2017-6353
CVE-2017-6951
CVE-2017-7187
CVE-2017-7261
CVE-2017-7294
CVE-2017-7308
CVE-2017-7616
CVE-2017-7645
CVE-2017-8106
CVE-2018-1000877
CVE-2018-1000878
CVE-2018-8781
CVE-2018-8897
CVE-2019-1000019
CVE-2019-1000020
CVE-2019-18408
SUSE-SU-2015:1177-1
SUSE-SU-2015:1183-2
SUSE-SU-2015:2000-2
SUSE-SU-2016:0429-1
SUSE-SU-2016:2151-1
SUSE-SU-2017:1360-1
SUSE-SU-2017:2526-1
SUSE-SU-2018:1541-1
SUSE-SU-2018:1546-1
SUSE-SU-2019:0736-1
SUSE-SU-2019:2014-1
SUSE-SU-2019:3092-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND kdebase4-workspace-libs-4.11.22-lp150.7 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libu2f-host-1.1.6-lp151.2.6 is installed
  • OR libu2f-host-devel-1.1.6-lp151.2.6 is installed
  • OR libu2f-host-doc-1.1.6-lp151.2.6 is installed
  • OR libu2f-host0-1.1.6-lp151.2.6 is installed
  • OR pam_u2f-1.0.8-lp151.2.3 is installed
  • OR u2f-host-1.1.6-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • flash-player-11.2.202.336-0.3 is installed
  • OR flash-player-gnome-11.2.202.336-0.3 is installed
  • OR flash-player-kde4-11.2.202.336-0.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • compat-openssl097g-0.9.7g-146.22.31 is installed
  • OR compat-openssl097g-32bit-0.9.7g-146.22.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • krb5-1.12.1-25 is installed
  • OR krb5-32bit-1.12.1-25 is installed
  • OR krb5-client-1.12.1-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libsndfile-1.0.25-25 is installed
  • OR libsndfile1-1.0.25-25 is installed
  • OR libsndfile1-32bit-1.0.25-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libIlmImf-Imf_2_1-21-2.1.0-6.13 is installed
  • OR libIlmImf-Imf_2_1-21-32bit-2.1.0-6.13 is installed
  • OR openexr-2.1.0-6.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • ecryptfs-utils-103-5 is installed
  • OR ecryptfs-utils-32bit-103-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • cpp48-4.8.5-31.3 is installed
  • OR gcc48-4.8.5-31.3 is installed
  • OR gcc48-32bit-4.8.5-31.3 is installed
  • OR gcc48-c++-4.8.5-31.3 is installed
  • OR gcc48-info-4.8.5-31.3 is installed
  • OR gcc48-locale-4.8.5-31.3 is installed
  • OR libasan0-4.8.5-31.3 is installed
  • OR libasan0-32bit-4.8.5-31.3 is installed
  • OR libstdc++48-devel-4.8.5-31.3 is installed
  • OR libstdc++48-devel-32bit-4.8.5-31.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • apache2-2.4.23-14 is installed
  • OR apache2-doc-2.4.23-14 is installed
  • OR apache2-example-pages-2.4.23-14 is installed
  • OR apache2-prefork-2.4.23-14 is installed
  • OR apache2-utils-2.4.23-14 is installed
  • OR apache2-worker-2.4.23-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • gnutls-3.2.15-18.6 is installed
  • OR libgnutls-openssl27-3.2.15-18.6 is installed
  • OR libgnutls28-3.2.15-18.6 is installed
  • OR libgnutls28-32bit-3.2.15-18.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND mailx-12.5-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND mailman-2.1.17-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.9 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.9 is installed
  • OR sqlite3-3.8.10.2-9.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gnome-settings-daemon-3.20.1-50.5 is installed
  • OR gnome-settings-daemon-lang-3.20.1-50.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-extlib-0.9.16-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-PyJWT-1.4.2-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.5 is installed
  • OR bzip2-doc-1.0.6-30.5 is installed
  • OR libbz2-1-1.0.6-30.5 is installed
  • OR libbz2-1-32bit-1.0.6-30.5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.20-3.6 is installed
    • BACK