krb5-1.15-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10004 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z krb5-1.15-1.1 on GA media These are all security issues fixed in the krb5-1.15-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10004 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10004 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2002-2443/ SUSE CVE CVE-2002-2443 page https://www.suse.com/security/cve/CVE-2009-0844/ SUSE CVE CVE-2009-0844 page https://www.suse.com/security/cve/CVE-2009-0845/ SUSE CVE CVE-2009-0845 page https://www.suse.com/security/cve/CVE-2009-0846/ SUSE CVE CVE-2009-0846 page https://www.suse.com/security/cve/CVE-2009-0847/ SUSE CVE CVE-2009-0847 page https://www.suse.com/security/cve/CVE-2009-3295/ SUSE CVE CVE-2009-3295 page https://www.suse.com/security/cve/CVE-2009-4212/ SUSE CVE CVE-2009-4212 page https://www.suse.com/security/cve/CVE-2010-0283/ SUSE CVE CVE-2010-0283 page https://www.suse.com/security/cve/CVE-2010-0628/ SUSE CVE CVE-2010-0628 page https://www.suse.com/security/cve/CVE-2010-1320/ SUSE CVE CVE-2010-1320 page https://www.suse.com/security/cve/CVE-2010-1321/ SUSE CVE CVE-2010-1321 page https://www.suse.com/security/cve/CVE-2010-1322/ SUSE CVE CVE-2010-1322 page https://www.suse.com/security/cve/CVE-2010-1323/ SUSE CVE CVE-2010-1323 page https://www.suse.com/security/cve/CVE-2010-1324/ SUSE CVE CVE-2010-1324 page https://www.suse.com/security/cve/CVE-2010-4020/ SUSE CVE CVE-2010-4020 page https://www.suse.com/security/cve/CVE-2010-4021/ SUSE CVE CVE-2010-4021 page https://www.suse.com/security/cve/CVE-2010-4022/ SUSE CVE CVE-2010-4022 page https://www.suse.com/security/cve/CVE-2011-0281/ SUSE CVE CVE-2011-0281 page https://www.suse.com/security/cve/CVE-2011-0282/ SUSE CVE CVE-2011-0282 page https://www.suse.com/security/cve/CVE-2011-0284/ SUSE CVE CVE-2011-0284 page https://www.suse.com/security/cve/CVE-2011-0285/ SUSE CVE CVE-2011-0285 page https://www.suse.com/security/cve/CVE-2011-1527/ SUSE CVE CVE-2011-1527 page https://www.suse.com/security/cve/CVE-2011-1528/ SUSE CVE CVE-2011-1528 page https://www.suse.com/security/cve/CVE-2011-1529/ SUSE CVE CVE-2011-1529 page https://www.suse.com/security/cve/CVE-2011-1530/ SUSE CVE CVE-2011-1530 page https://www.suse.com/security/cve/CVE-2012-1012/ SUSE CVE CVE-2012-1012 page https://www.suse.com/security/cve/CVE-2012-1013/ SUSE CVE CVE-2012-1013 page https://www.suse.com/security/cve/CVE-2012-1016/ SUSE CVE CVE-2012-1016 page https://www.suse.com/security/cve/CVE-2013-1415/ SUSE CVE CVE-2013-1415 page https://www.suse.com/security/cve/CVE-2013-1417/ SUSE CVE CVE-2013-1417 page https://www.suse.com/security/cve/CVE-2013-1418/ SUSE CVE CVE-2013-1418 page https://www.suse.com/security/cve/CVE-2014-4341/ SUSE CVE CVE-2014-4341 page https://www.suse.com/security/cve/CVE-2014-4342/ SUSE CVE CVE-2014-4342 page https://www.suse.com/security/cve/CVE-2014-4343/ SUSE CVE CVE-2014-4343 page https://www.suse.com/security/cve/CVE-2014-4344/ SUSE CVE CVE-2014-4344 page https://www.suse.com/security/cve/CVE-2014-4345/ SUSE CVE CVE-2014-4345 page https://www.suse.com/security/cve/CVE-2014-5351/ SUSE CVE CVE-2014-5351 page https://www.suse.com/security/cve/CVE-2014-5352/ SUSE CVE CVE-2014-5352 page https://www.suse.com/security/cve/CVE-2014-5353/ SUSE CVE CVE-2014-5353 page https://www.suse.com/security/cve/CVE-2014-5354/ SUSE CVE CVE-2014-5354 page https://www.suse.com/security/cve/CVE-2014-5355/ SUSE CVE CVE-2014-5355 page https://www.suse.com/security/cve/CVE-2014-9421/ SUSE CVE CVE-2014-9421 page https://www.suse.com/security/cve/CVE-2014-9422/ SUSE CVE CVE-2014-9422 page https://www.suse.com/security/cve/CVE-2014-9423/ SUSE CVE CVE-2014-9423 page https://www.suse.com/security/cve/CVE-2015-2694/ SUSE CVE CVE-2015-2694 page https://www.suse.com/security/cve/CVE-2015-2695/ SUSE CVE CVE-2015-2695 page https://www.suse.com/security/cve/CVE-2015-2696/ SUSE CVE CVE-2015-2696 page https://www.suse.com/security/cve/CVE-2015-2697/ SUSE CVE CVE-2015-2697 page https://www.suse.com/security/cve/CVE-2015-2698/ SUSE CVE CVE-2015-2698 page https://www.suse.com/security/cve/CVE-2015-8629/ SUSE CVE CVE-2015-8629 page https://www.suse.com/security/cve/CVE-2015-8630/ SUSE CVE CVE-2015-8630 page https://www.suse.com/security/cve/CVE-2015-8631/ SUSE CVE CVE-2015-8631 page https://www.suse.com/security/cve/CVE-2016-3119/ SUSE CVE CVE-2016-3119 page https://www.suse.com/security/cve/CVE-2016-3120/ SUSE CVE CVE-2016-3120 page openSUSE Tumbleweed krb5-1.15-1.1 krb5-32bit-1.15-1.1 krb5-client-1.15-1.1 krb5-devel-1.15-1.1 krb5-devel-32bit-1.15-1.1 krb5-doc-1.15-1.1 krb5-mini-1.15-1.1 krb5-mini-devel-1.15-1.1 krb5-plugin-kdb-ldap-1.15-1.1 krb5-plugin-preauth-otp-1.15-1.1 krb5-plugin-preauth-pkinit-1.15-1.1 krb5-server-1.15-1.1 krb5-1.15-1.1 as a component of openSUSE Tumbleweed krb5-32bit-1.15-1.1 as a component of openSUSE Tumbleweed krb5-client-1.15-1.1 as a component of openSUSE Tumbleweed krb5-devel-1.15-1.1 as a component of openSUSE Tumbleweed krb5-devel-32bit-1.15-1.1 as a component of openSUSE Tumbleweed krb5-doc-1.15-1.1 as a component of openSUSE Tumbleweed krb5-mini-1.15-1.1 as a component of openSUSE Tumbleweed krb5-mini-devel-1.15-1.1 as a component of openSUSE Tumbleweed krb5-plugin-kdb-ldap-1.15-1.1 as a component of openSUSE Tumbleweed krb5-plugin-preauth-otp-1.15-1.1 as a component of openSUSE Tumbleweed krb5-plugin-preauth-pkinit-1.15-1.1 as a component of openSUSE Tumbleweed krb5-server-1.15-1.1 as a component of openSUSE Tumbleweed schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103. CVE-2002-2443 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2002-2443.html CVE-2002-2443 https://bugzilla.suse.com/825985 SUSE Bug 825985 https://bugzilla.suse.com/871411 SUSE Bug 871411 https://bugzilla.suse.com/887734 SUSE Bug 887734 The get_input_token function in the SPNEGO implementation in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote attackers to cause a denial of service (daemon crash) and possibly obtain sensitive information via a crafted length value that triggers a buffer over-read. CVE-2009-0844 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0844.html CVE-2009-0844 https://bugzilla.suse.com/486722 SUSE Bug 486722 The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3, when SPNEGO is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via invalid ContextFlags data in the reqFlags field in a negTokenInit token. CVE-2009-0845 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0845.html CVE-2009-0845 https://bugzilla.suse.com/485894 SUSE Bug 485894 https://bugzilla.suse.com/486722 SUSE Bug 486722 The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 (aka krb5) before 1.6.4 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors involving an invalid DER encoding that triggers a free of an uninitialized pointer. CVE-2009-0846 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0846.html CVE-2009-0846 https://bugzilla.suse.com/486723 SUSE Bug 486723 The asn1buf_imbed function in the ASN.1 decoder in MIT Kerberos 5 (aka krb5) 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service (application crash) via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmetic. CVE-2009-0847 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-0847.html CVE-2009-0847 https://bugzilla.suse.com/486722 SUSE Bug 486722 The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request. CVE-2009-3295 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-3295.html CVE-2009-3295 https://bugzilla.suse.com/561347 SUSE Bug 561347 Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by providing ciphertext with a length that is too short to be valid. CVE-2009-4212 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2009-4212.html CVE-2009-4212 https://bugzilla.suse.com/561351 SUSE Bug 561351 The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.2, and 1.8 alpha, allows remote attackers to cause a denial of service (assertion failure and daemon crash) via an invalid (1) AS-REQ or (2) TGS-REQ request. CVE-2010-0283 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0283.html CVE-2010-0283 https://bugzilla.suse.com/571781 SUSE Bug 571781 https://bugzilla.suse.com/576524 SUSE Bug 576524 The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in the SPNEGO GSS-API functionality in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.2 and 1.8 before 1.8.1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via an invalid packet that triggers incorrect preparation of an error token. CVE-2010-0628 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-0628.html CVE-2010-0628 https://bugzilla.suse.com/582557 SUSE Bug 582557 https://bugzilla.suse.com/586981 SUSE Bug 586981 Double free vulnerability in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x before 1.8.2 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a request associated with (1) renewal or (2) validation. CVE-2010-1320 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1320.html CVE-2010-1320 https://bugzilla.suse.com/596002 SUSE Bug 596002 The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-API library in MIT Kerberos 5 (aka krb5) through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other applications, does not properly check for invalid GSS-API tokens, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an AP-REQ message in which the authenticator's checksum field is missing. CVE-2010-1321 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1321.html CVE-2010-1321 https://bugzilla.suse.com/596826 SUSE Bug 596826 https://bugzilla.suse.com/611090 SUSE Bug 611090 https://bugzilla.suse.com/646073 SUSE Bug 646073 https://bugzilla.suse.com/648950 SUSE Bug 648950 https://bugzilla.suse.com/658525 SUSE Bug 658525 https://bugzilla.suse.com/659926 SUSE Bug 659926 https://bugzilla.suse.com/663953 SUSE Bug 663953 https://bugzilla.suse.com/679560 SUSE Bug 679560 The merge_authdata function in kdc_authdata.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8.x before 1.8.4 does not properly manage an index into an authorization-data list, which allows remote attackers to cause a denial of service (daemon crash), or possibly obtain sensitive information, spoof authorization, or execute arbitrary code, via a TGS request that triggers an uninitialized pointer dereference, as demonstrated by a request from a Windows Active Directory client. CVE-2010-1322 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1322.html CVE-2010-1322 https://bugzilla.suse.com/640990 SUSE Bug 640990 MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to modify user-visible prompt text, modify a response to a Key Distribution Center (KDC), or forge a KRB-SAFE message via certain checksums that (1) are unkeyed or (2) use RC4 keys. CVE-2010-1323 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1323.html CVE-2010-1323 https://bugzilla.suse.com/650650 SUSE Bug 650650 MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via (1) an unkeyed checksum, (2) an unkeyed PAC checksum, or (3) a KrbFastArmoredReq checksum based on an RC4 key. CVE-2010-1324 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-1324.html CVE-2010-1324 https://bugzilla.suse.com/650650 SUSE Bug 650650 MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not reject RC4 key-derivation checksums, which might allow remote authenticated users to forge a (1) AD-SIGNEDPATH or (2) AD-KDC-ISSUED signature, and possibly gain privileges, by leveraging the small key space that results from certain one-byte stream-cipher operations. CVE-2010-4020 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-4020.html CVE-2010-4020 https://bugzilla.suse.com/650650 SUSE Bug 650650 The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue." CVE-2010-4021 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-4021.html CVE-2010-4021 https://bugzilla.suse.com/650650 SUSE Bug 650650 The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in standalone mode, does not properly handle when a worker child process "exits abnormally," which allows remote attackers to cause a denial of service (listening process termination, no new connections, and lack of updates in slave KVC) via unspecified vectors. CVE-2010-4022 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2010-4022.html CVE-2010-4022 https://bugzilla.suse.com/662665 SUSE Bug 662665 The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \n sequence. CVE-2011-0281 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0281.html CVE-2011-0281 https://bugzilla.suse.com/663619 SUSE Bug 663619 The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name. CVE-2011-0282 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0282.html CVE-2011-0282 https://bugzilla.suse.com/663619 SUSE Bug 663619 Double free vulnerability in the prepare_error_as function in do_as_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 through 1.9, when the PKINIT feature is enabled, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via an e_data field containing typed data. CVE-2011-0284 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0284.html CVE-2011-0284 https://bugzilla.suse.com/671717 SUSE Bug 671717 The process_chpw_request function in schpw.c in the password-changing functionality in kadmind in MIT Kerberos 5 (aka krb5) 1.7 through 1.9 frees an invalid pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted request that triggers an error condition. CVE-2011-0285 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-0285.html CVE-2011-0285 https://bugzilla.suse.com/687469 SUSE Bug 687469 The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a kinit operation with incorrect string case for the realm, related to the is_principal_in_realm, krb5_set_error_message, krb5_ldap_get_principal, and process_as_req functions. CVE-2011-1527 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1527.html CVE-2011-1527 https://bugzilla.suse.com/719393 SUSE Bug 719393 https://bugzilla.suse.com/743742 SUSE Bug 743742 The krb5_ldap_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unspecified vectors, related to the locked_check_p function. NOTE: the Berkeley DB vector is covered by CVE-2011-4151. CVE-2011-1528 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1528.html CVE-2011-1528 https://bugzilla.suse.com/719393 SUSE Bug 719393 https://bugzilla.suse.com/743742 SUSE Bug 743742 The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger certain process_as_req errors. CVE-2011-1529 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1529.html CVE-2011-1529 https://bugzilla.suse.com/719393 SUSE Bug 719393 https://bugzilla.suse.com/743742 SUSE Bug 743742 The process_tgs_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS request that triggers an error other than the KRB5_KDB_NOENTRY error. CVE-2011-1530 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-1530.html CVE-2011-1530 https://bugzilla.suse.com/730393 SUSE Bug 730393 server/server_stubs.c in the kadmin protocol implementation in MIT Kerberos 5 (aka krb5) 1.10 before 1.10.1 does not properly restrict access to (1) SET_STRING and (2) GET_STRINGS operations, which might allow remote authenticated administrators to modify or read string attributes by leveraging the global list privilege. CVE-2012-1012 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1012.html CVE-2012-1012 https://bugzilla.suse.com/766109 SUSE Bug 766109 The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password. CVE-2012-1013 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1013.html CVE-2012-1013 https://bugzilla.suse.com/765485 SUSE Bug 765485 The pkinit_server_return_padata function in plugins/preauth/pkinit/pkinit_srv.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 attempts to find an agility KDF identifier in inappropriate circumstances, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted Draft 9 request. CVE-2012-1016 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-1016.html CVE-2012-1016 https://bugzilla.suse.com/807556 SUSE Bug 807556 The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1.11.x before 1.11.1 does not properly handle errors during extraction of fields from an X.509 certificate, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed KRB5_PADATA_PK_AS_REQ AS-REQ request. CVE-2013-1415 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-1415.html CVE-2013-1415 https://bugzilla.suse.com/806715 SUSE Bug 806715 do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service (daemon crash) via a TGS-REQ request that triggers an attempted cross-realm referral for a host-based service principal. CVE-2013-1417 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-1417.html CVE-2013-1417 https://bugzilla.suse.com/850660 SUSE Bug 850660 https://bugzilla.suse.com/879587 SUSE Bug 879587 The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request. CVE-2013-1418 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-1418.html CVE-2013-1418 https://bugzilla.suse.com/849240 SUSE Bug 849240 https://bugzilla.suse.com/866059 SUSE Bug 866059 https://bugzilla.suse.com/879587 SUSE Bug 879587 MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session. CVE-2014-4341 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-4341.html CVE-2014-4341 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/886016 SUSE Bug 886016 MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read or NULL pointer dereference, and application crash) by injecting invalid tokens into a GSSAPI application session. CVE-2014-4342 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-4342.html CVE-2014-4342 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/886016 SUSE Bug 886016 Double free vulnerability in the init_ctx_reselect function in the SPNEGO initiator in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.10.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via network traffic that appears to come from an intended acceptor, but specifies a security mechanism different from the one proposed by the initiator. CVE-2014-4343 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-4343.html CVE-2014-4343 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/888697 SUSE Bug 888697 The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty continuation token at a certain point during a SPNEGO negotiation. CVE-2014-4344 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-4344.html CVE-2014-4344 https://bugzilla.suse.com/888697 SUSE Bug 888697 Off-by-one error in the krb5_encode_krbsecretkey function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) 1.6.x through 1.11.x before 1.11.6 and 1.12.x before 1.12.2 allows remote authenticated users to cause a denial of service (buffer overflow) or possibly execute arbitrary code via a series of "cpw -keepold" commands. CVE-2014-4345 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 6 AV:N/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-4345.html CVE-2014-4345 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/891082 SUSE Bug 891082 The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13 sends old keys in a response to a -randkey -keepold request, which allows remote authenticated users to forge tickets by leveraging administrative access. CVE-2014-5351 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5351.html CVE-2014-5351 https://bugzilla.suse.com/897874 SUSE Bug 897874 The krb5_gss_process_context_token function in lib/gssapi/krb5/process_context_token.c in the libgssapi_krb5 library in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly maintain security-context handles, which allows remote authenticated users to cause a denial of service (use-after-free and double free, and daemon crash) or possibly execute arbitrary code via crafted GSSAPI traffic, as demonstrated by traffic to kadmind. CVE-2014-5352 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5352.html CVE-2014-5352 https://bugzilla.suse.com/1005509 SUSE Bug 1005509 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/912002 SUSE Bug 912002 The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c in MIT Kerberos 5 (aka krb5) before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (daemon crash) via a successful LDAP query with no results, as demonstrated by using an incorrect object type for a password policy. CVE-2014-5353 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5353.html CVE-2014-5353 https://bugzilla.suse.com/910457 SUSE Bug 910457 plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by creating a database entry for a keyless principal, as demonstrated by a kadmin "add_principal -nokey" or "purgekeys -all" command. CVE-2014-5354 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5354.html CVE-2014-5354 https://bugzilla.suse.com/910458 SUSE Bug 910458 MIT Kerberos 5 (aka krb5) through 1.13.1 incorrectly expects that a krb5_read_message data field is represented as a string ending with a '\0' character, which allows remote attackers to (1) cause a denial of service (NULL pointer dereference) via a zero-byte version string or (2) cause a denial of service (out-of-bounds read) by omitting the '\0' character, related to appl/user_user/server.c and lib/krb5/krb/recvauth.c. CVE-2014-5355 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-5355.html CVE-2014-5355 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/918595 SUSE Bug 918595 The auth_gssapi_unwrap_data function in lib/rpc/auth_gssapi_misc.c in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR deserialization, which allows remote authenticated users to cause a denial of service (use-after-free and double free, and daemon crash) or possibly execute arbitrary code via malformed XDR data, as demonstrated by data sent to kadmind. CVE-2014-9421 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-9421.html CVE-2014-9421 https://bugzilla.suse.com/1005509 SUSE Bug 1005509 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/912002 SUSE Bug 912002 The check_rpcsec_auth function in kadmin/server/kadm_rpc_svc.c in kadmind in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 allows remote authenticated users to bypass a kadmin/* authorization check and obtain administrative access by leveraging access to a two-component principal with an initial "kadmind" substring, as demonstrated by a "ka/x" principal. CVE-2014-9422 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-9422.html CVE-2014-9422 https://bugzilla.suse.com/1005509 SUSE Bug 1005509 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/912002 SUSE Bug 912002 The svcauth_gss_accept_sec_context function in lib/rpc/svc_auth_gss.c in MIT Kerberos 5 (aka krb5) 1.11.x through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 transmits uninitialized interposer data to clients, which allows remote attackers to obtain sensitive information from process heap memory by sniffing the network for data in a handle field. CVE-2014-9423 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2014-9423.html CVE-2014-9423 https://bugzilla.suse.com/1005509 SUSE Bug 1005509 https://bugzilla.suse.com/912002 SUSE Bug 912002 The kdcpreauth modules in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.2 do not properly track whether a client's request has been validated, which allows remote attackers to bypass an intended preauthentication requirement by providing (1) zero bytes of data or (2) an arbitrary realm name, related to plugins/preauth/otp/main.c and plugins/preauth/pkinit/pkinit_srv.c. CVE-2015-2694 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-2694.html CVE-2015-2694 https://bugzilla.suse.com/928978 SUSE Bug 928978 lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that is mishandled during a gss_inquire_context call. CVE-2015-2695 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-2695.html CVE-2015-2695 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/952188 SUSE Bug 952188 https://bugzilla.suse.com/969771 SUSE Bug 969771 lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted IAKERB packet that is mishandled during a gss_inquire_context call. CVE-2015-2696 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-2696.html CVE-2015-2696 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/952189 SUSE Bug 952189 https://bugzilla.suse.com/954204 SUSE Bug 954204 The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1.14 allows remote authenticated users to cause a denial of service (out-of-bounds read and KDC crash) via an initial '\0' character in a long realm field within a TGS request. CVE-2015-2697 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 6.8 AV:N/AC:L/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-2697.html CVE-2015-2697 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/952190 SUSE Bug 952190 The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696. CVE-2015-2698 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-2698.html CVE-2015-2698 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/954204 SUSE Bug 954204 The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 does not verify whether '\0' characters exist as expected, which allows remote authenticated users to obtain sensitive information or cause a denial of service (out-of-bounds read) via a crafted string. CVE-2015-8629 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 2.1 AV:N/AC:H/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8629.html CVE-2015-8629 https://bugzilla.suse.com/770172 SUSE Bug 770172 https://bugzilla.suse.com/963968 SUSE Bug 963968 The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by specifying KADM5_POLICY with a NULL policy name. CVE-2015-8630 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 2.1 AV:N/AC:H/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8630.html CVE-2015-8630 https://bugzilla.suse.com/963964 SUSE Bug 963964 Multiple memory leaks in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (memory consumption) via a request specifying a NULL principal name. CVE-2015-8631 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 6.3 AV:N/AC:M/Au:S/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-8631.html CVE-2015-8631 https://bugzilla.suse.com/963975 SUSE Bug 963975 The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through 1.13.4 and 1.14.x through 1.14.1 mishandles the DB argument, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request to modify a principal. CVE-2016-3119 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3119.html CVE-2016-3119 https://bugzilla.suse.com/971942 SUSE Bug 971942 The validate_as_request function in kdc_util.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.13.6 and 1.4.x before 1.14.3, when restrict_anonymous_to_tgt is enabled, uses an incorrect client data structure, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an S4U2Self request. CVE-2016-3120 openSUSE Tumbleweed:krb5-1.15-1.1 openSUSE Tumbleweed:krb5-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-client-1.15-1.1 openSUSE Tumbleweed:krb5-devel-1.15-1.1 openSUSE Tumbleweed:krb5-devel-32bit-1.15-1.1 openSUSE Tumbleweed:krb5-doc-1.15-1.1 openSUSE Tumbleweed:krb5-mini-1.15-1.1 openSUSE Tumbleweed:krb5-mini-devel-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.15-1.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.15-1.1 openSUSE Tumbleweed:krb5-server-1.15-1.1 moderate 2.1 AV:N/AC:H/Au:S/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-3120.html CVE-2016-3120 https://bugzilla.suse.com/991088 SUSE Bug 991088