18 matches found
SUSE: Security Advisory (SUSE-SU-2015:2302-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: OpenSource MIT Kerberos Vulnerabilities affect IBM Security Access Manager for Web (CVE-2015-2698)
Summary IBM Security Access Manager for Web is affected by a vulnerability in MIT Kerberos. Vulnerability Details CVEID: CVE-2015-2698 DESCRIPTION: MIT Kerberos 5 is vulnerable to a denial of service, caused by the failure to prevent access to a specific pointer by the iakerbgssexportseccontext...
Security fix for the ALT Linux 7 package krb5 version 1.13.7-alt0.M70P.1
1.13.7-alt0.M70P.1 built April 13, 2017 Evgeny Sinelnikov in task 180726 March 24, 2017 Evgeny Sinelnikov - Update to supported security release Fixes: CVE-2014-5355, CVE-2015-2694, CVE-2015-2695, CVE-2015-2696, CVE-2015-2698, CVE-2015-2697, CVE-2015-8629, CVE-2015-8630, CVE-2015-8631,...
Security fix for the ALT Linux 8 package krb5 version 1.14.2-alt1
1.14.2-alt1 built April 26, 2016 Andrey Cherepanov in task 163855 April 25, 2016 Alexey Shabalin - 1.14.2 - fixed CVE-2015-2695,CVE-2015-2696,CVE-2015-2697,CVE-2015-2698,CVE-2015-8629,CVE-2015-8630,CVE-2015-8631,CVE-2016-3119 - allow verification of attributes on krb5.conf...
Security fix for the ALT Linux 9 package krb5 version 1.14.2-alt1
April 25, 2016 Alexey Shabalin 1.14.2-alt1 - 1.14.2 - fixed CVE-2015-2695,CVE-2015-2696,CVE-2015-2697,CVE-2015-2698,CVE-2015-8629,CVE-2015-8630,CVE-2015-8631,CVE-2016-3119 - allow verification of attributes on krb5.conf...
Fedora 21 : krb5-1.12.2-19.fc21 (2015-200d2dfd9f)
krb5-1.13.2-13.fc23 - Patch CVE-2015-2698 krb5-1.12.2-19.fc21 - Patch CVE-2015-2698 krb5-1.13.2-10.fc22 - Patch CVE-2015-2698 ---- krb5-1.12.2-18.fc21 - Fix CVE-2015-2695, CVE-2015-2696, CVE-2015-2697 krb5-1.13.2-9.fc22 - Fix CVE-2015-2695, CVE-2015-2696, CVE-2015-2697 krb5-1.13.2-12.fc23 - Fix...
Fedora 23 : krb5-1.13.2-13.fc23 (2015-58ae075703)
krb5-1.13.2-13.fc23 - Patch CVE-2015-2698 krb5-1.12.2-19.fc21 - Patch CVE-2015-2698 krb5-1.13.2-10.fc22 - Patch CVE-2015-2698 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean a...
Fedora 22 : krb5-1.13.2-10.fc22 (2015-1b9c33d713)
krb5-1.13.2-13.fc23 - Patch CVE-2015-2698 krb5-1.12.2-19.fc21 - Patch CVE-2015-2698 krb5-1.13.2-10.fc22 - Patch CVE-2015-2698 ---- krb5-1.12.2-18.fc21 - Fix CVE-2015-2695, CVE-2015-2696, CVE-2015-2697 krb5-1.13.2-9.fc22 - Fix CVE-2015-2695, CVE-2015-2696, CVE-2015-2697 krb5-1.13.2-12.fc23 - Fix...
openSUSE Security Update : krb5 (openSUSE-2015-961)
The krb5 package was updated to fix the following security issue : - CVE-2015-2698: Fixed a memory corruption regression introduced by resolving of CVE-2015-2698 bsc954204. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
SUSE SLED12 / SLES12 Security Update : krb5 (SUSE-SU-2015:2302-1)
The krb5 package was updated to fix the following security issue : - CVE-2015-2698: Fixed a memory corruption regression introduced by resolving of CVE-2015-2698 bsc954204. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...
SUSE-SU-2015:2302-1 Security update for krb5
The krb5 package was updated to fix the following security issue: - CVE-2015-2698: Fixed a memory corruption regression introduced by resolving of CVE-2015-2698 bsc954204...
Updated krb5 packages fix CVE-2015-2698
Updated krb5 packages fix security vulnerabilities: In any MIT krb5 release with the patches for CVE-2015-2696 applied, an application which calls gssexportseccontext may experience memory corruption if the context was established using the IAKERB mechanism. Historically, some vulnerabilities of...
CVE-2015-2698
The iakerbgssexportseccontext function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 aka krb5 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service memory corruption or possibly have unspecified other impact by...
CVE-2015-2698
CVE-2015-2698: The Initial document details a memory corruption vulnerability in MIT Kerberos 5 (krb5) via iakerb_gss_export_sec_context (pointer access bug in iakerb.c) that could allow remote authenticated users to cause a DoS. Remediation in the report shows upgrading Cloud Pak for Security to...
CVE-2015-2698
The iakerbgssexportseccontext function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 aka krb5 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service memory corruption or possibly have unspecified other impact by...
Ubuntu: Security Advisory (USN-2810-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-2810-1: Kerberos vulnerabilities
It was discovered that the Kerberos kpasswd service incorrectly handled certain UDP packets. A remote attacker could possibly use this issue to cause resource consumption, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS. CVE-2002-2443 It was discovered that Kerberos...
CVE-2015-2698
The iakerbgssexportseccontext function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 aka krb5 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service memory corruption or possibly have unspecified other impact by...