42 matches found
CVE-2020-17049 affecting package samba 4.12.5-7
CVE-2020-17049 affecting package samba 4.12.5-7. No patch is available currently...
CVE-2020-17049 affecting package samba for versions less than 4.18.3-1
CVE-2020-17049 affecting package samba for versions less than 4.18.3-1. An upgraded version of the package is available that resolves this issue...
Advisory ROSA-SA-2024-2450
Software: samba 4.12.3 OS: ROSA Virtualization 2.1 packageevrstring: samba-4.12.3 CVE-ID: CVE-2016-2124 BDU-ID: 2021-05993 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability was discovered in the way Samba implemented SMB1 authentication. An attacker could use this vulnerability to extract the public...
Moderate: Red Hat Security Advisory: krb5 security update
An update for krb5 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...
Oracle Linux 8 : idm:DL1 (ELSA-2024-0143)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0143 advisory. - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455 ipa-healthcheck opendnssec python-jwcrypto python-kdcproxy Tenable has extracted the precedin...
idm:DL1 security update
An update is available for module.python-qrcode, custodia, opendnssec, module.opendnssec, ipa-healthcheck, python-yubico, module.pyusb, module.softhsm, softhsm, module.python-yubico, module.slapi-nis, module.ipa-healthcheck, python-qrcode, module.custodia, pyusb, module.python-kdcproxy,...
Rocky Linux 8 : idm:DL1 (RLSA-2024:0143)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0143 advisory. - A security feature bypass vulnerability exists in the way Key Distribution Center KDC determines if a service ticket can be used for delegation via...
Moderate: Red Hat Security Advisory: idm:DL1 security update
An update for the idm:DL1 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 8 : idm:DL1 (RHSA-2024:0139)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0139 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and...
ALSA-2024:0143 Moderate: idm:DL1 security update
AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: Kerberos: delegation constrain bypass in S4U2Proxy CVE-2020-17049 ipa: Invalid CSRF protection...
Oracle Linux 9 : krb5 (ELSA-2023-2570)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-2570 advisory. - Add support for MS-PAC extended KDC signature CVE-2022-37967 - Fix integer overflows in PAC parsing CVE-2022-42898 - Fix KDC null deref on TGS inner body null...
AlmaLinux 9 : krb5 (ALSA-2023:2570)
The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:2570 advisory. - Kerberos Security Feature Bypass Vulnerability CVE-2020-17049 Note that Nessus has not tested for this issue but has instead relied only on the application's...
Moderate: Red Hat Security Advisory: krb5 security, bug fix, and enhancement update
An update for krb5 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Moderate: krb5 security, bug fix, and enhancement update
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...
SUSE CVE-2020-17049
unknown...
Samba Security Feature Bypass Vulnerability (CVE-2020-17049)
Samba is prone to a security feature bypass vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...
July 13, 2021—KB5004307 (Security-only update)
July 13, 2021—KB5004307 Security-only update Important: Windows 7 and Windows Server 2008 R2 have reached the end of mainstream support and are now in extended support. Starting in July 2020, there will no longer be optional, non-security releases known as "C" releases for this operating system...
July 13, 2021—KB5004305 (Monthly Rollup)
July 13, 2021—KB5004305 Monthly Rollup Important: Windows Server 2008 Service Pack 2 SP2 has reached the end of mainstream support and is now in extended support. Starting in July 2020, there will no longer be optional, non-security releases known as "C" releases for this operating system...
July 13, 2021—KB5004244 (OS Build 17763.2061)
July 13, 2021—KB5004244 OS Build 17763.2061 6/15/21 IMPORTANT This release includes the Flash Removal Package. Taking this update will remove Adobe Flash from the machine. For more information, see the Update on Adobe Flash Player End of Support. 5/11/21 REMINDER Windows 10, version 1809 reached...
July 13, 2021 Public preview security update (KB5004243)
July 13, 2021 Public preview security update KB5004243 Improvements and fixes This public preview security update includes quality improvements. Key changes include: Removes support for the PerformTicketSignature setting and permanently enables Enforcement mode for CVE-2020-17049. For more...