Oval Definition:	oval:org.opensuse.security:def:56400
Revision Date: 2020-12-01 Version: 1 Title: Security update for krb5 (Moderate) Description: This update for krb5 provides the following fixes: Security issues fixed: - CVE-2018-5730: DN container check bypass by supplying special crafted data (bsc#1083927). - CVE-2018-5729: Null pointer dereference in kadmind or DN container check bypass by supplying special crafted data (bsc#1083926). Non-security issues fixed: - Make it possible for legacy applications (e.g. SAP Netweaver) to remain compatible with newer Kerberos. System administrators who are experiencing this kind of compatibility issues may set the environment variable GSSAPI_ASSUME_MECH_MATCH to a non-empty value, and make sure the environment variable is visible and effective to the application startup script. (bsc#1057662) - Fix a GSS failure in legacy applications by not indicating deprecated GSS mechanisms in gss_indicate_mech() list. (bsc#1081725) Family: unix Class: patch Status: Reference(s): 1004527 1005776 1005778 1005780 1005781 1012382 1012829 1015342 1015343 1019675 1019680 1019695 1019699 1020412 1020645 1020657 1020989 1021424 1022595 1022604 1022743 1022912 1022967 1024346 1024373 1024405 1025461 1030850 1031717 1031784 1032150 1034048 1034075 1035479 1036060 1036215 1036737 1037579 1037838 1037890 1038583 1040813 1042847 1043598 1044503 1046529 1047238 1047487 1047626 1047989 1048155 1048228 1048325 1048327 1048356 1048501 1048893 1048912 1048934 1049226 1049272 1049291 1049336 1049361 1049580 1050471 1050742 1051790 1051987 1052093 1052094 1052095 1052360 1052384 1052580 1052593 1052888 1053043 1053309 1053472 1053627 1053629 1053633 1053681 1053685 1053802 1053915 1053919 1054082 1054084 1054654 1055013 1055096 1055272 1055290 1055359 1055493 1055567 1055709 1055755 1055896 1055935 1055963 1056061 1056185 1056230 1056261 1056427 1056587 1056588 1056596 1056686 1056827 1056849 1056982 1057015 1057031 1057035 1057038 1057047 1057067 1057383 1057498 1057662 1057849 1058038 1058116 1058135 1058410 1058507 1058512 1058550 1059051 1059465 1059500 1059863 1060197 1060229 1060249 1060400 1060985 1061017 1061046 1061064 1061067 1061172 1061451 1061721 1061775 1061831 1061872 1062279 1062520 1062962 1063102 1063349 1063460 1063475 1063479 1063501 1063509 1063520 1063570 1063667 1063671 1063695 1064064 1064206 1064388 1064392 1064436 1066471 1066472 1069496 1081725 1083926 1083927 1097108 1097410 1099306 1106873 1119069 1119105 1119947 860993 963575 964944 966170 966172 966186 966191 966316 966318 969476 969477 969756 971975 975788 981309 989196 990628 990856 991809 CVE-2006-4484 CVE-2008-1686 CVE-2009-4492 CVE-2010-0541 CVE-2011-0904 CVE-2011-0905 CVE-2011-1004 CVE-2011-1005 CVE-2011-1164 CVE-2011-4815 CVE-2013-0157 CVE-2013-1988 CVE-2014-0004 CVE-2014-0038 CVE-2014-3641 CVE-2014-7230 CVE-2014-7231 CVE-2014-9114 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-5218 CVE-2015-6749 CVE-2016-2830 CVE-2016-2835 CVE-2016-2836 CVE-2016-2837 CVE-2016-2838 CVE-2016-2839 CVE-2016-5011 CVE-2016-5252 CVE-2016-5254 CVE-2016-5258 CVE-2016-5259 CVE-2016-5262 CVE-2016-5263 CVE-2016-5264 CVE-2016-5265 CVE-2016-6354 CVE-2017-1000252 CVE-2017-1000405 CVE-2017-11472 CVE-2017-12134 CVE-2017-12153 CVE-2017-12154 CVE-2017-12193 CVE-2017-13080 CVE-2017-14051 CVE-2017-14106 CVE-2017-14489 CVE-2017-15102 CVE-2017-15265 CVE-2017-15649 CVE-2017-16525 CVE-2017-16527 CVE-2017-16529 CVE-2017-16531 CVE-2017-16535 CVE-2017-16536 CVE-2017-16537 CVE-2017-16649 CVE-2017-16650 CVE-2017-16939 CVE-2018-0495 CVE-2018-10853 CVE-2018-12384 CVE-2018-12404 CVE-2018-12405 CVE-2018-16884 CVE-2018-17466 CVE-2018-18492 CVE-2018-18493 CVE-2018-18494 CVE-2018-18498 CVE-2018-3646 CVE-2018-5729 CVE-2018-5730 SUSE-SU-2016:2131-1 SUSE-SU-2017:2847-1 SUSE-SU-2017:3152-1 SUSE-SU-2017:3210-1 SUSE-SU-2018:0846-1 SUSE-SU-2018:2363-1 SUSE-SU-2018:4236-1 SUSE-SU-2019:0356-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND iputils-s20161105-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information fuse-overlayfs-0.4.1-lp151.2 is installed OR fuse3-3.6.1-lp151.2 is installed OR fuse3-devel-3.6.1-lp151.2 is installed OR fuse3-doc-3.6.1-lp151.2 is installed OR libcontainers-common-20190401-lp151.2.3 is installed OR libfuse3-3-3.6.1-lp151.2 is installed OR podman-1.4.4-lp151.3.3 is installed OR podman-cni-config-1.4.4-lp151.3.3 is installed OR slirp4netns-0.3.0-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information krb5-1.12.5-40.23 is installed OR krb5-32bit-1.12.5-40.23 is installed OR krb5-client-1.12.5-40.23 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information kernel-default-4.4.92-6.18 is installed OR kernel-default-devel-4.4.92-6.18 is installed OR kernel-default-extra-4.4.92-6.18 is installed OR kernel-devel-4.4.92-6.18 is installed OR kernel-macros-4.4.92-6.18 is installed OR kernel-source-4.4.92-6.18 is installed OR kernel-syms-4.4.92-6.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_51-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_51-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_18-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libblkid1-2.28-40 is installed OR libblkid1-32bit-2.28-40 is installed OR libfdisk1-2.28-40 is installed OR libmount1-2.28-40 is installed OR libmount1-32bit-2.28-40 is installed OR libsmartcols1-2.28-40 is installed OR libuuid1-2.28-40 is installed OR libuuid1-32bit-2.28-40 is installed OR python-libmount-2.28-40 is installed OR util-linux-2.28-40 is installed OR util-linux-lang-2.28-40 is installed OR util-linux-systemd-2.28-40 is installed OR uuidd-2.28-40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bash-4.3-82 is installed OR bash-doc-4.3-82 is installed OR libreadline6-6.3-82 is installed OR libreadline6-32bit-6.3-82 is installed OR readline-doc-6.3-82 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cvs-1.12.12-182.3 is installed OR cvs-doc-1.12.12-182.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-cinder-7.0.2~a0~dev1-1 is installed OR openstack-cinder-api-7.0.2~a0~dev1-1 is installed OR openstack-cinder-backup-7.0.2~a0~dev1-1 is installed OR openstack-cinder-scheduler-7.0.2~a0~dev1-1 is installed OR openstack-cinder-volume-7.0.2~a0~dev1-1 is installed OR python-cinder-7.0.2~a0~dev1-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND ucode-intel-20190514-13.44 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.5 is installed OR rubygem-loofah-2.0.2-3.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.6 is installed OR rubygem-actionview-4_2-4.2.9-9.6 is installed
BACK