| Revision Date: | 2021-02-19 | Version: | 1 |
| Title: | Security update for krb5-appl (Important) |
| Description: |
This update for krb5-appl fixes the following issues:
- CVE-2019-25017: Check the filenames sent by the server match those requested by the client (bsc#1131109). - CVE-2019-25018: Disallow empty incoming filename or ones that refer to the current directory (bsc#1131109).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1005070
1005072
1005076
1021669
1038553
1039348
1042292
1044947
1046610
1065641
1076017
1079152
1079798
1079799
1079800
1079801
1082962
1083382
1083488
1083900
1085114
1085447
1087007
1087012
1087082
1087086
1087095
1092813
1092904
1094033
1094353
1094823
1096140
1096242
1096281
1096480
1096728
1097356
1131109
796243
798538
798541
815451
821669
843759
910457
910458
918595
920160
938945
954270
954470
962052
966822
986566
989980
998677
CVE-2013-0221
CVE-2013-0222
CVE-2013-0223
CVE-2013-1633
CVE-2013-1987
CVE-2014-1932
CVE-2014-5353
CVE-2014-5354
CVE-2014-5355
CVE-2014-9687
CVE-2015-2304
CVE-2015-2695
CVE-2015-4000
CVE-2016-0729
CVE-2016-1572
CVE-2016-5418
CVE-2016-5844
CVE-2016-6250
CVE-2016-8687
CVE-2016-8688
CVE-2016-8689
CVE-2017-1000364
CVE-2017-13166
CVE-2017-13305
CVE-2017-16227
CVE-2017-5495
CVE-2017-7508
CVE-2017-7520
CVE-2017-7521
CVE-2018-1000004
CVE-2018-1000204
CVE-2018-1068
CVE-2018-1092
CVE-2018-1093
CVE-2018-1094
CVE-2018-1130
CVE-2018-3665
CVE-2018-5378
CVE-2018-5379
CVE-2018-5380
CVE-2018-5381
CVE-2018-5803
CVE-2018-5848
CVE-2018-7492
CVE-2018-7566
CVE-2019-25017
CVE-2019-25018
SUSE-SU-2015:1282-1
SUSE-SU-2015:2294-1
SUSE-SU-2016:0290-1
SUSE-SU-2016:1026-1
SUSE-SU-2016:2209-1
SUSE-SU-2016:2911-1
SUSE-SU-2017:1615-1
SUSE-SU-2017:1635-1
SUSE-SU-2018:0455-1
SUSE-SU-2018:1014-1
SUSE-SU-2018:1034-1
SUSE-SU-2018:1761-1
|
| Platform(s): | openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.0 is installed AND dracut-044.1-lp150.13 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.1 is installed
AND Package Information
gnutls-3.6.7-lp151.2.3 is installed
OR gnutls-guile-3.6.7-lp151.2.3 is installed
OR libgnutls-dane-devel-3.6.7-lp151.2.3 is installed
OR libgnutls-dane0-3.6.7-lp151.2.3 is installed
OR libgnutls-devel-3.6.7-lp151.2.3 is installed
OR libgnutls-devel-32bit-3.6.7-lp151.2.3 is installed
OR libgnutls30-3.6.7-lp151.2.3 is installed
OR libgnutls30-32bit-3.6.7-lp151.2.3 is installed
OR libgnutlsxx-devel-3.6.7-lp151.2.3 is installed
OR libgnutlsxx28-3.6.7-lp151.2.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP2 is installed
AND Package Information
coreutils-8.12-6.25.29 is installed
OR coreutils-lang-8.12-6.25.29 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP3 is installed
AND Package Information
ecryptfs-utils-61-1.35 is installed
OR ecryptfs-utils-32bit-61-1.35 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
krb5-1.6.3-133.49.103 is installed
OR krb5-32bit-1.6.3-133.49.103 is installed
OR krb5-client-1.6.3-133.49.103 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
libarchive-3.1.2-25 is installed
OR libarchive13-3.1.2-25 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND python-imaging-1.1.7-21 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
openvpn-2.3.8-16.17 is installed
OR openvpn-auth-pam-plugin-2.3.8-16.17 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND cifs-utils-6.5-8 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND clamav-0.100.1-33.15 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
krb5-appl-clients-1.0.3-3.6.1 is installed
OR krb5-appl-servers-1.0.3-3.6.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND yast2-smt-3.0.14-17.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND gzip-1.6-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
strongswan-5.1.3-26.13 is installed
OR strongswan-doc-5.1.3-26.13 is installed
OR strongswan-hmac-5.1.3-26.13 is installed
OR strongswan-ipsec-5.1.3-26.13 is installed
OR strongswan-libs0-5.1.3-26.13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND gdb-8.3.1-2.14 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
libcgroup-0.41.rc1-10.9 is installed
OR libcgroup-tools-0.41.rc1-10.9 is installed
OR libcgroup1-0.41.rc1-10.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
libICE6-1.0.8-12 is installed
OR libICE6-32bit-1.0.8-12 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 6 is installed
AND Package Information
kernel-default-3.12.74-60.64.45 is installed
OR kernel-default-base-3.12.74-60.64.45 is installed
OR kernel-default-devel-3.12.74-60.64.45 is installed
OR kernel-devel-3.12.74-60.64.45 is installed
OR kernel-macros-3.12.74-60.64.45 is installed
OR kernel-source-3.12.74-60.64.45 is installed
OR kernel-syms-3.12.74-60.64.45 is installed
OR kernel-xen-3.12.74-60.64.45 is installed
OR kernel-xen-base-3.12.74-60.64.45 is installed
OR kernel-xen-devel-3.12.74-60.64.45 is installed
OR kgraft-patch-3_12_74-60_64_45-default-1-4 is installed
OR kgraft-patch-3_12_74-60_64_45-xen-1-4 is installed
OR kgraft-patch-SLE12-SP1_Update_16-1-4 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND Package Information
hostinfo-1.0.1-19.5 is installed
OR supportutils-3.0-95.21 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 8 is installed
AND clamav-0.100.3-33.26 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND python-cryptography-2.0.3-3.3 is installed
|