OPENSUSE-SU-2026:20676-1 Security update for build, product-composer

This update for build, product-composer fixes the following issues: Changes in build: - Support a new "IgnoreRebuild" config. - build-recipe-kiwi: Add support for oci containers Avoid needlessly compressing container images Detect container images based on build result file name - Fix queryrecipe...

CVE-2018-25032 affecting package ccache for versions less than 3.6-3

CVE-2018-25032 affecting package ccache for versions less than 3.6-3. A patched version of the package is available...

Kerberos ticket converter

This module converts tickets to the ccache format from the kirbi format and vice versa. Module Options msf use auxiliary/admin/kerberos/ticketconverter msf auxiliaryticketconverter show actions ...actions... msf auxiliaryticketconverter set ACTION msf auxiliaryticketconverter show options ...show...

targetedKerberoast - Kerberoast With ACL Abuse Capabilities

targetedKerberoast is a Python script that can, like many others e.g. GetUserSPNs.py, print "kerberoast" hashes for user accounts that have a SPN set. This tool brings the following additional feature: for each user without SPNs, it tries to set one abuse of a write permission on the...

openSUSE Security Update : osc (openSUSE-2020-852)

This update for osc to 0.169.1 fixes the following issues : Security issue fixed : - CVE-2019-3681: Fixed an insufficient validation of network-controlled filesystem paths bsc1122675. Non-security issues fixed : - Improved the speed and usability of osc bash completion. - improved some error...

samba security, bug fix, and enhancement update

openchange 2.3-24.0.1 - Add patch to build against samba 4.11 2.3-24 - Rebuild for newer samba and libldb samba 4.11.2-13 - resolves: 1802182 - Fix join using netbios name 4.11.2-12 - related: 1781232 - Improve debug output of smbclient - resolves: 1794461 - Do not return bogus inode numbers in...

openSUSE Security Update : java-11-openjdk (openSUSE-2019-2557)

This update for java-11-openjdk to version jdk-11.0.5-10 fixes the following issues : Security issues fixed October 2019 CPU bsc1154212: - CVE-2019-2933: Windows file handling redux - CVE-2019-2945: Better socket support - CVE-2019-2949: Better Kerberos ccache handling - CVE-2019-2958: Build Bett...

Security update for java-11-openjdk (important)

openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2019:2557-1 Rating: important References: 1152856 1154212 Cross-References: CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975...

SUSE SLED15 / SLES15 Security Update : java-11-openjdk (SUSE-SU-2019:2998-1)

This update for java-11-openjdk to version jdk-11.0.5-10 fixes the following issues : Security issues fixed October 2019 CPU bsc1154212 : CVE-2019-2933: Windows file handling redux CVE-2019-2945: Better socket support CVE-2019-2949: Better Kerberos ccache handling CVE-2019-2958: Build Better...

[SECURITY] Fedora 29 Update: meson-0.50.0-4.fc29

Meson is a build system designed to optimize programmer productivity. It aims to do this by providing simple, out-of-the-box support for modern software development tools and practices, such as unit tests, coverage reports, Valgrind, CCache and the like...

Fedora 27 : krb5 (2017-7a22a80c7e)

Prevent applications from accidentally implementing CVE-2017-11462 double free if seccontext is copied. - fc26+: Add ccselect hostrealm module for ccache selection based on service hostname. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 25 : krb5 (2017-56e23bc2b5)

Prevent applications from accidentally implementing CVE-2017-11462 double free if seccontext is copied. - fc26+: Add ccselect hostrealm module for ccache selection based on service hostname. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 26 : krb5 (2017-10c74147f9)

Prevent applications from accidentally implementing CVE-2017-11462 double free if seccontext is copied. - fc26+: Add ccselect hostrealm module for ccache selection based on service hostname. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

OracleVM 2.1 : krb5 (OVMSA-2009-0003)

The remote OracleVM system is missing necessary patches to address critical security updates : CVE-2009-0844 The getinputtoken function in the SPNEGO implementation in MIT Kerberos 5 aka krb5 1.5 through 1.6.3 allows remote attackers to cause a denial of service daemon crash and possibly obtain...

Oracle Linux 5 : pam_krb5 (ELSA-2008-0907)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2008-0907 advisory. 2.2.14-1.el52.1 - add backported fix for ccache permissions bypass when the existingticket option is used CVE-2008-3825, 462112 Tenable has extracted the...

pam_krb5 security update

2.2.14-1.el52.1 - add backported fix for ccache permissions bypass when the existingticket option is used CVE-2008-3825, 462112...