Oval Definition:oval:org.opensuse.security:def:58949
Revision Date:2020-12-01Version:1
Title:Security update for krb5 (Moderate)
Description:

This update for krb5 provides the following fixes:

Security issues fixed:

- CVE-2018-5730: DN container check bypass by supplying special crafted data (bsc#1083927). - CVE-2018-5729: Null pointer dereference in kadmind or DN container check bypass by supplying special crafted data (bsc#1083926).

Non-security issues fixed:

- Make it possible for legacy applications (e.g. SAP Netweaver) to remain compatible with newer Kerberos. System administrators who are experiencing this kind of compatibility issues may set the environment variable GSSAPI_ASSUME_MECH_MATCH to a non-empty value, and make sure the environment variable is visible and effective to the application startup script. (bsc#1057662) - Fix a GSS failure in legacy applications by not indicating deprecated GSS mechanisms in gss_indicate_mech() list. (bsc#1081725)
Family:unixClass:patch
Status:Reference(s):1057662
1073230
1074594
1075014
1076017
1081714
1081725
1083488
1083926
1083927
1085114
1085447
1090205
1096254
1108382
1109137
1109893
1110542
1111319
1112911
1113296
1120629
1120630
1120631
1124937
1127155
1131823
1132728
1132729
1132732
1132734
1133114
1133145
1133190
1133738
1134226
1134395
1134701
1134718
1136922
1136935
1137194
1137977
1138291
1139083
1140575
1144902
1150003
1150250
1159913
1160467
1160468
1165631
1174157
1175259
CVE-2014-8964
CVE-2015-2325
CVE-2015-2327
CVE-2015-2328
CVE-2015-3210
CVE-2015-3217
CVE-2015-5073
CVE-2015-8380
CVE-2016-1283
CVE-2016-3191
CVE-2017-1000469
CVE-2017-13166
CVE-2018-1000004
CVE-2018-1068
CVE-2018-20532
CVE-2018-20533
CVE-2018-20534
CVE-2018-20836
CVE-2018-5729
CVE-2018-5730
CVE-2018-7566
CVE-2019-10126
CVE-2019-10218
CVE-2019-10245
CVE-2019-10638
CVE-2019-10639
CVE-2019-11365
CVE-2019-11366
CVE-2019-11487
CVE-2019-11599
CVE-2019-12380
CVE-2019-12456
CVE-2019-12614
CVE-2019-12818
CVE-2019-12819
CVE-2019-12900
CVE-2019-14896
CVE-2019-14897
CVE-2019-1547
CVE-2019-1563
CVE-2019-17639
CVE-2019-2602
CVE-2019-2684
CVE-2019-2697
CVE-2019-2698
CVE-2019-5108
CVE-2019-6212
CVE-2019-6215
CVE-2019-6216
CVE-2019-6217
CVE-2019-6226
CVE-2019-6227
CVE-2019-6229
CVE-2019-6233
CVE-2019-6234
CVE-2020-14577
CVE-2020-14577
CVE-2020-14578
CVE-2020-14578
CVE-2020-14579
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14583
CVE-2020-14593
CVE-2020-14593
CVE-2020-14621
CVE-2020-14621
CVE-2020-1749
SUSE-SU-2018:0846-1
SUSE-SU-2018:1019-1
SUSE-SU-2018:1736-1
SUSE-SU-2019:0511-1
SUSE-SU-2019:1345-1
SUSE-SU-2019:1823-1
SUSE-SU-2019:1972-1
SUSE-SU-2019:2013-1
SUSE-SU-2019:2413-1
SUSE-SU-2020:2482-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • postgresql96-9.6.8-lp150.1 is installed
  • OR postgresql96-server-9.6.8-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • icingacli-2.7.3-9 is installed
  • OR icingaweb2-2.7.3-9 is installed
  • OR icingaweb2-common-2.7.3-9 is installed
  • OR icingaweb2-vendor-HTMLPurifier-2.7.3-9 is installed
  • OR icingaweb2-vendor-JShrink-2.7.3-9 is installed
  • OR icingaweb2-vendor-Parsedown-2.7.3-9 is installed
  • OR icingaweb2-vendor-dompdf-2.7.3-9 is installed
  • OR icingaweb2-vendor-lessphp-2.7.3-9 is installed
  • OR icingaweb2-vendor-zf1-2.7.3-9 is installed
  • OR php-Icinga-2.7.3-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • krb5-1.12.5-40.23 is installed
  • OR krb5-32bit-1.12.5-40.23 is installed
  • OR krb5-client-1.12.5-40.23 is installed
  • OR krb5-doc-1.12.5-40.23 is installed
  • OR krb5-plugin-kdb-ldap-1.12.5-40.23 is installed
  • OR krb5-plugin-preauth-otp-1.12.5-40.23 is installed
  • OR krb5-plugin-preauth-pkinit-1.12.5-40.23 is installed
  • OR krb5-server-1.12.5-40.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.70-38.56 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.70-38.56 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.70-38.56 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.70-38.56 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.70-38.56 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND atftp-0.7.0-160.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.45-38.37 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.45-38.37 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.45-38.37 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.45-38.37 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.45-38.37 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libpcre1-8.39-7 is installed
  • OR libpcre1-32bit-8.39-7 is installed
  • OR libpcre16-0-8.39-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libsqlite3-0-3.8.10.2-9.15 is installed
  • OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed
  • OR sqlite3-3.8.10.2-9.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_69-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.16 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.16 is installed
  • OR python-2.7.13-28.16 is installed
  • OR python-32bit-2.7.13-28.16 is installed
  • OR python-base-2.7.13-28.16 is installed
  • OR python-base-32bit-2.7.13-28.16 is installed
  • OR python-curses-2.7.13-28.16 is installed
  • OR python-demo-2.7.13-28.16 is installed
  • OR python-doc-2.7.13-28.16 is installed
  • OR python-doc-pdf-2.7.13-28.16 is installed
  • OR python-gdbm-2.7.13-28.16 is installed
  • OR python-idle-2.7.13-28.16 is installed
  • OR python-tk-2.7.13-28.16 is installed
  • OR python-xml-2.7.13-28.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gnome-shell-3.20.4-77.17 is installed
  • OR gnome-shell-browser-plugin-3.20.4-77.17 is installed
  • OR gnome-shell-lang-3.20.4-77.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND cobbler-2.6.6-49.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND couchdb-1.7.2-3.3 is installed
    • BACK