krb5-1.21.2-3.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:13921 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z krb5-1.21.2-3.1 on GA media These are all security issues fixed in the krb5-1.21.2-3.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-13921 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:13921 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2024-26458/ SUSE CVE CVE-2024-26458 page https://www.suse.com/security/cve/CVE-2024-26461/ SUSE CVE CVE-2024-26461 page https://www.suse.com/security/cve/CVE-2024-26462/ SUSE CVE CVE-2024-26462 page openSUSE Tumbleweed krb5-1.21.2-3.1 krb5-32bit-1.21.2-3.1 krb5-client-1.21.2-3.1 krb5-devel-1.21.2-3.1 krb5-devel-32bit-1.21.2-3.1 krb5-plugin-kdb-ldap-1.21.2-3.1 krb5-plugin-preauth-otp-1.21.2-3.1 krb5-plugin-preauth-pkinit-1.21.2-3.1 krb5-plugin-preauth-spake-1.21.2-3.1 krb5-server-1.21.2-3.1 krb5-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-32bit-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-client-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-devel-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-devel-32bit-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-plugin-kdb-ldap-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-plugin-preauth-otp-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-plugin-preauth-pkinit-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-plugin-preauth-spake-1.21.2-3.1 as a component of openSUSE Tumbleweed krb5-server-1.21.2-3.1 as a component of openSUSE Tumbleweed Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c. CVE-2024-26458 openSUSE Tumbleweed:krb5-1.21.2-3.1 openSUSE Tumbleweed:krb5-32bit-1.21.2-3.1 openSUSE Tumbleweed:krb5-client-1.21.2-3.1 openSUSE Tumbleweed:krb5-devel-1.21.2-3.1 openSUSE Tumbleweed:krb5-devel-32bit-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-spake-1.21.2-3.1 openSUSE Tumbleweed:krb5-server-1.21.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-26458.html CVE-2024-26458 https://bugzilla.suse.com/1220770 SUSE Bug 1220770 Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c. CVE-2024-26461 openSUSE Tumbleweed:krb5-1.21.2-3.1 openSUSE Tumbleweed:krb5-32bit-1.21.2-3.1 openSUSE Tumbleweed:krb5-client-1.21.2-3.1 openSUSE Tumbleweed:krb5-devel-1.21.2-3.1 openSUSE Tumbleweed:krb5-devel-32bit-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-spake-1.21.2-3.1 openSUSE Tumbleweed:krb5-server-1.21.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-26461.html CVE-2024-26461 https://bugzilla.suse.com/1220771 SUSE Bug 1220771 Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c. CVE-2024-26462 openSUSE Tumbleweed:krb5-1.21.2-3.1 openSUSE Tumbleweed:krb5-32bit-1.21.2-3.1 openSUSE Tumbleweed:krb5-client-1.21.2-3.1 openSUSE Tumbleweed:krb5-devel-1.21.2-3.1 openSUSE Tumbleweed:krb5-devel-32bit-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-kdb-ldap-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-otp-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-pkinit-1.21.2-3.1 openSUSE Tumbleweed:krb5-plugin-preauth-spake-1.21.2-3.1 openSUSE Tumbleweed:krb5-server-1.21.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-26462.html CVE-2024-26462 https://bugzilla.suse.com/1220772 SUSE Bug 1220772