OVAL Reference oval:org.opensuse.security:def:56728

Oval Definition:

oval:org.opensuse.security:def:56728

Revision Date:	2020-12-01	Version:	1
Title:	Security update for krb5 (Moderate)
Description:	This update for krb5 provides the following fixes: Security issues fixed: - CVE-2018-5730: DN container check bypass by supplying special crafted data (bsc#1083927). - CVE-2018-5729: Null pointer dereference in kadmind or DN container check bypass by supplying special crafted data (bsc#1083926). Non-security issues fixed: - Make it possible for legacy applications (e.g. SAP Netweaver) to remain compatible with newer Kerberos. System administrators who are experiencing this kind of compatibility issues may set the environment variable GSSAPI_ASSUME_MECH_MATCH to a non-empty value, and make sure the environment variable is visible and effective to the application startup script. (bsc#1057662) - Fix a GSS failure in legacy applications by not indicating deprecated GSS mechanisms in gss_indicate_mech() list. (bsc#1081725)
Family:	unix	Class:	patch
Status:		Reference(s):	1000195 1002496 1002573 1013657 1013668 1013882 1014490 1014507 1015169 1016340 1022627 1022871 1023004 1024183 1024186 1024307 1024834 1025188 1027519 1046637 1047675 1048920 1049578 1051787 1051788 1052686 1054979 1055857 1057662 1059893 1064113 1064114 1072167 1076537 1081725 1082299 1083125 1083242 1083275 1083926 1083927 1084536 1085279 1085331 1086162 1086194 1087088 1087260 1088147 1088260 1088261 1089608 1089752 1090643 1099498 1101676 1101677 1101678 1103342 1111331 1112368 1112377 1112384 1112386 1112391 1112397 1112404 1112415 1112417 1112421 1112432 1112767 1115245 1116686 1117751 1117776 1118460 1118462 1118463 1118754 1120041 1120095 1120943 1122198 1122475 1125623 1125666 1127027 1130680 1131493 1155419 1160471 1160770 1165787 1170441 1171475 1171847 1172105 1172116 1172121 954980 969522 971328 975131 981566 986228 986869 991564 CVE-2011-0421 CVE-2012-1162 CVE-2012-1163 CVE-2015-2331 CVE-2015-8126 CVE-2015-8872 CVE-2016-10155 CVE-2016-2119 CVE-2016-2315 CVE-2016-2324 CVE-2016-4804 CVE-2016-6328 CVE-2016-9101 CVE-2016-9776 CVE-2016-9843 CVE-2016-9907 CVE-2016-9911 CVE-2016-9921 CVE-2016-9922 CVE-2017-0861 CVE-2017-10320 CVE-2017-10365 CVE-2017-10664 CVE-2017-10806 CVE-2017-11089 CVE-2017-11334 CVE-2017-11434 CVE-2017-12135 CVE-2017-12137 CVE-2017-13220 CVE-2017-15365 CVE-2017-18203 CVE-2017-2615 CVE-2017-2620 CVE-2017-5579 CVE-2017-5856 CVE-2017-5898 CVE-2017-5973 CVE-2017-7544 CVE-2018-10087 CVE-2018-10124 CVE-2018-1087 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-19636 CVE-2018-19637 CVE-2018-19638 CVE-2018-19639 CVE-2018-19640 CVE-2018-20030 CVE-2018-20815 CVE-2018-2759 CVE-2018-2777 CVE-2018-2786 CVE-2018-2810 CVE-2018-3058 CVE-2018-3060 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3162 CVE-2018-3173 CVE-2018-3174 CVE-2018-3185 CVE-2018-3200 CVE-2018-3251 CVE-2018-3277 CVE-2018-3282 CVE-2018-3284 CVE-2018-5729 CVE-2018-5730 CVE-2018-7757 CVE-2018-8781 CVE-2018-8822 CVE-2018-8897 CVE-2019-11091 CVE-2019-15681 CVE-2019-15690 CVE-2019-20788 CVE-2019-5953 CVE-2019-9278 CVE-2020-0093 CVE-2020-10188 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 SUSE-SU-2016:0027-1 SUSE-SU-2016:0796-1 SUSE-SU-2016:2306-1 SUSE-SU-2017:0570-1 SUSE-SU-2017:2319-1 SUSE-SU-2018:0846-1 SUSE-SU-2018:1220-1 SUSE-SU-2019:0956-1 SUSE-SU-2019:1122-1 SUSE-SU-2019:1441-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:1533-1 SUSE-SU-2020:1534-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information cups-pk-helper-0.2.6-lp150.1 is installed OR cups-pk-helper-lang-0.2.6-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libpolkit0-0.114-lp151.5.3 is installed OR libpolkit0-32bit-0.114-lp151.5.3 is installed OR polkit-0.114-lp151.5.3 is installed OR polkit-devel-0.114-lp151.5.3 is installed OR polkit-doc-0.114-lp151.5.3 is installed OR typelib-1_0-Polkit-1_0-0.114-lp151.5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information krb5-1.12.5-40.23 is installed OR krb5-32bit-1.12.5-40.23 is installed OR krb5-client-1.12.5-40.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libdcerpc-binding0-4.2.4-26 is installed OR libdcerpc-binding0-32bit-4.2.4-26 is installed OR libdcerpc0-4.2.4-26 is installed OR libdcerpc0-32bit-4.2.4-26 is installed OR libgensec0-4.2.4-26 is installed OR libgensec0-32bit-4.2.4-26 is installed OR libndr-krb5pac0-4.2.4-26 is installed OR libndr-krb5pac0-32bit-4.2.4-26 is installed OR libndr-nbt0-4.2.4-26 is installed OR libndr-nbt0-32bit-4.2.4-26 is installed OR libndr-standard0-4.2.4-26 is installed OR libndr-standard0-32bit-4.2.4-26 is installed OR libndr0-4.2.4-26 is installed OR libndr0-32bit-4.2.4-26 is installed OR libnetapi0-4.2.4-26 is installed OR libnetapi0-32bit-4.2.4-26 is installed OR libregistry0-4.2.4-26 is installed OR libsamba-credentials0-4.2.4-26 is installed OR libsamba-credentials0-32bit-4.2.4-26 is installed OR libsamba-hostconfig0-4.2.4-26 is installed OR libsamba-hostconfig0-32bit-4.2.4-26 is installed OR libsamba-passdb0-4.2.4-26 is installed OR libsamba-passdb0-32bit-4.2.4-26 is installed OR libsamba-util0-4.2.4-26 is installed OR libsamba-util0-32bit-4.2.4-26 is installed OR libsamdb0-4.2.4-26 is installed OR libsamdb0-32bit-4.2.4-26 is installed OR libsmbclient-raw0-4.2.4-26 is installed OR libsmbclient-raw0-32bit-4.2.4-26 is installed OR libsmbclient0-4.2.4-26 is installed OR libsmbclient0-32bit-4.2.4-26 is installed OR libsmbconf0-4.2.4-26 is installed OR libsmbconf0-32bit-4.2.4-26 is installed OR libsmbldap0-4.2.4-26 is installed OR libsmbldap0-32bit-4.2.4-26 is installed OR libtevent-util0-4.2.4-26 is installed OR libtevent-util0-32bit-4.2.4-26 is installed OR libwbclient0-4.2.4-26 is installed OR libwbclient0-32bit-4.2.4-26 is installed OR samba-4.2.4-26 is installed OR samba-32bit-4.2.4-26 is installed OR samba-client-4.2.4-26 is installed OR samba-client-32bit-4.2.4-26 is installed OR samba-doc-4.2.4-26 is installed OR samba-libs-4.2.4-26 is installed OR samba-libs-32bit-4.2.4-26 is installed OR samba-winbind-4.2.4-26 is installed OR samba-winbind-32bit-4.2.4-26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_14-22.25 is installed OR xen-doc-html-4.5.5_14-22.25 is installed OR xen-kmp-default-4.5.5_14_k3.12.74_60.64.54-22.25 is installed OR xen-libs-4.5.5_14-22.25 is installed OR xen-libs-32bit-4.5.5_14-22.25 is installed OR xen-tools-4.5.5_14-22.25 is installed OR xen-tools-domU-4.5.5_14-22.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND dosfstools-3.0.26-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information dovecot22-2.2.31-19.11 is installed OR dovecot22-backend-mysql-2.2.31-19.11 is installed OR dovecot22-backend-pgsql-2.2.31-19.11 is installed OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND dosfstools-3.0.26-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed OR webkit2gtk3-2.28.1-2.50 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND squid-3.5.21-26.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXinerama1-1.1.3-3 is installed OR libXinerama1-32bit-1.1.3-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.88 is installed OR kernel-default-base-3.12.74-60.64.88 is installed OR kernel-default-devel-3.12.74-60.64.88 is installed OR kernel-devel-3.12.74-60.64.88 is installed OR kernel-macros-3.12.74-60.64.88 is installed OR kernel-source-3.12.74-60.64.88 is installed OR kernel-syms-3.12.74-60.64.88 is installed OR kernel-xen-3.12.74-60.64.88 is installed OR kernel-xen-base-3.12.74-60.64.88 is installed OR kernel-xen-devel-3.12.74-60.64.88 is installed OR kgraft-patch-3_12_74-60_64_88-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_88-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_27-1-2.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libmariadb3-3.0.7-1.6 is installed OR mariadb-10.2.22-10 is installed OR mariadb-client-10.2.22-10 is installed OR mariadb-connector-c-3.0.7-1.6 is installed OR mariadb-errormessages-10.2.22-10 is installed OR mariadb-galera-10.2.22-10 is installed OR mariadb-tools-10.2.22-10 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed OR libwebkit2gtk3-lang-2.28.3-2.56 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.28.3-2.56 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed OR webkit2gtk3-2.28.3-2.56 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information crowbar-core-6.0+git.1587558898.313bb9fd3-3.22 is installed OR crowbar-core-branding-upstream-6.0+git.1587558898.313bb9fd3-3.22 is installed OR crowbar-ha-6.0+git.1586256059.e6f67e1-3.16 is installed OR crowbar-openstack-6.0+git.1587753188.da39e44a7-3.22 is installed OR memcached-1.5.17-3.3 is installed OR openstack-ceilometer-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-central-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-compute-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-ipmi-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-agent-notification-11.1.1~dev5-3.13 is installed OR openstack-ceilometer-polling-11.1.1~dev5-3.13 is installed OR openstack-cinder-13.0.10~dev9-3.19 is installed OR openstack-cinder-api-13.0.10~dev9-3.19 is installed OR openstack-cinder-backup-13.0.10~dev9-3.19 is installed OR openstack-cinder-scheduler-13.0.10~dev9-3.19 is installed OR openstack-cinder-volume-13.0.10~dev9-3.19 is installed OR openstack-designate-7.0.1~dev25-3.16 is installed OR openstack-designate-agent-7.0.1~dev25-3.16 is installed OR openstack-designate-api-7.0.1~dev25-3.16 is installed OR openstack-designate-central-7.0.1~dev25-3.16 is installed OR openstack-designate-producer-7.0.1~dev25-3.16 is installed OR openstack-designate-sink-7.0.1~dev25-3.16 is installed OR openstack-designate-worker-7.0.1~dev25-3.16 is installed OR openstack-heat-11.0.3~dev35-3.16 is installed OR openstack-heat-api-11.0.3~dev35-3.16 is installed OR openstack-heat-api-cfn-11.0.3~dev35-3.16 is installed OR openstack-heat-engine-11.0.3~dev35-3.16 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev35-3.16 is installed OR openstack-ironic-11.1.5~dev3-3.16 is installed OR openstack-ironic-api-11.1.5~dev3-3.16 is installed OR openstack-ironic-conductor-11.1.5~dev3-3.16 is installed OR openstack-ironic-image-9.0.0-3.6 is installed OR openstack-ironic-image-x86_64-9.0.0-3.6 is installed OR openstack-manila-7.4.2~dev4-4.21 is installed OR openstack-manila-api-7.4.2~dev4-4.21 is installed OR openstack-manila-data-7.4.2~dev4-4.21 is installed OR openstack-manila-scheduler-7.4.2~dev4-4.21 is installed OR openstack-manila-share-7.4.2~dev4-4.21 is installed OR openstack-neutron-13.0.8~dev28-3.22 is installed OR openstack-neutron-dhcp-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-ha-tool-13.0.8~dev28-3.22 is installed OR openstack-neutron-l3-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-linuxbridge-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-macvtap-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-metadata-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-metering-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-openvswitch-agent-13.0.8~dev28-3.22 is installed OR openstack-neutron-server-13.0.8~dev28-3.22 is installed OR openstack-nova-18.3.1~dev17-3.22 is installed OR openstack-nova-api-18.3.1~dev17-3.22 is installed OR openstack-nova-cells-18.3.1~dev17-3.22 is installed OR openstack-nova-compute-18.3.1~dev17-3.22 is installed OR openstack-nova-conductor-18.3.1~dev17-3.22 is installed OR openstack-nova-console-18.3.1~dev17-3.22 is installed OR openstack-nova-novncproxy-18.3.1~dev17-3.22 is installed OR openstack-nova-placement-api-18.3.1~dev17-3.22 is installed OR openstack-nova-scheduler-18.3.1~dev17-3.22 is installed OR openstack-nova-serialproxy-18.3.1~dev17-3.22 is installed OR openstack-nova-vncproxy-18.3.1~dev17-3.22 is installed OR openstack-octavia-3.2.3~dev2-3.22 is installed OR openstack-octavia-amphora-agent-3.2.3~dev2-3.22 is installed OR openstack-octavia-amphora-image-0.1.3-7.9 is installed OR openstack-octavia-amphora-image-x86_64-0.1.3-7.9 is installed OR openstack-octavia-api-3.2.3~dev2-3.22 is installed OR openstack-octavia-health-manager-3.2.3~dev2-3.22 is installed OR openstack-octavia-housekeeping-3.2.3~dev2-3.22 is installed OR openstack-octavia-worker-3.2.3~dev2-3.22 is installed OR python-ceilometer-11.1.1~dev5-3.13 is installed OR python-cinder-13.0.10~dev9-3.19 is installed OR python-cinderclient-4.0.3-3.6 is installed OR python-cinderclient-doc-4.0.3-3.6 is installed OR python-designate-7.0.1~dev25-3.16 is installed OR python-glanceclient-2.13.2-3.3 is installed OR python-glanceclient-doc-2.13.2-3.3 is installed OR python-heat-11.0.3~dev35-3.16 is installed OR python-ironic-11.1.5~dev3-3.16 is installed OR python-ironic-lib-2.14.3-3.6 is installed OR python-ironicclient-2.5.4-4.10 is installed OR python-ironicclient-doc-2.5.4-4.10 is installed OR python-keystonemiddleware-5.2.2-17 is installed OR python-manila-7.4.2~dev4-4.21 is installed OR python-manila-tempest-plugin-0.1.0-3.6 is installed OR python-neutron-13.0.8~dev28-3.22 is installed OR python-nova-18.3.1~dev17-3.22 is installed OR python-novaclient-11.0.1-3.3 is installed OR python-novaclient-doc-11.0.1-3.3 is installed OR python-octavia-3.2.3~dev2-3.22 is installed OR python-octaviaclient-1.6.2-3.6 is installed OR python-openstackclient-3.16.3-11 is installed OR python-os-brick-2.5.10-3.9 is installed OR python-os-brick-common-2.5.10-3.9 is installed OR python-oslo.config-6.4.2-3.3 is installed OR python-oslo.config-doc-6.4.2-3.3 is installed OR python-oslo.rootwrap-5.14.2-3.3 is installed OR python-oslo.utils-3.36.5-3.3 is installed OR python-swiftclient-3.6.1-3.3 is installed OR python-swiftclient-doc-3.6.1-3.3 is installed OR python-watcherclient-2.1.1-3.3 is installed OR release-notes-suse-openstack-cloud-9.20200319-3.18 is installed OR ruby2.1-rubygem-crowbar-client-3.9.2-3.6 is installed OR ruby2.1-rubygem-puma-2.16.0-4.6 is installed OR rubygem-crowbar-client-3.9.2-3.6 is installed OR rubygem-puma-2.16.0-4.6 is installed OR zookeeper-3.4.13-3.3 is installed OR zookeeper-server-3.4.13-3.3 is installed

BACK