Oval Definition:oval:org.opensuse.security:def:78254
Revision Date:2015-10-30Version:1
Title:Security update for krb5 (Important)
Description:

krb5 was updated to fix three security issues.

These security issues were fixed: - CVE-2015-2695: Applications which call gss_inquire_context() on a partially-established SPNEGO context could have caused the GSS-API library to read from a pointer using the wrong type, generally causing a process crash. (bsc#952188). - CVE-2015-2696: Applications which call gss_inquire_context() on a partially-established IAKERB context could have caused the GSS-API library to read from a pointer using the wrong type, generally causing a process crash. (bsc#952189). - CVE-2015-2697: Incorrect string handling in build_principal_va can lead to DOS (bsc#952190).
Family:unixClass:patch
Status:Reference(s):948011
952188
952189
952190
CVE-2015-2695
CVE-2015-2696
CVE-2015-2697
SUSE-SU-2015:1897-1
Platform(s):SUSE Linux Enterprise Desktop 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • krb5-1.12.1-19.1 is installed
  • OR krb5-32bit-1.12.1-19.1 is installed
  • OR krb5-client-1.12.1-19.1 is installed
    • BACK