18 matches found
SUSE: Security Advisory (SUSE-SU-2016:0429-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security fix for the ALT Linux 7 package krb5 version 1.13.7-alt0.M70P.1
1.13.7-alt0.M70P.1 built April 13, 2017 Evgeny Sinelnikov in task 180726 March 24, 2017 Evgeny Sinelnikov - Update to supported security release Fixes: CVE-2014-5355, CVE-2015-2694, CVE-2015-2695, CVE-2015-2696, CVE-2015-2698, CVE-2015-2697, CVE-2015-8629, CVE-2015-8630, CVE-2015-8631,...
MIT Kerberos 5 kadmind KADM5_POLICY Denial of Service (CVE-2015-8630)
A denial-of-service vulnerability exists in the MIT Kerberos 5 kadmind service. The vulnerability is due to a NULL pointer dereference when processing policy value. A remote, authenticated user who has permission to modify a principal entry can exploit this vulnerability by sending maliciously...
Security fix for the ALT Linux 8 package krb5 version 1.14.2-alt1
1.14.2-alt1 built April 26, 2016 Andrey Cherepanov in task 163855 April 25, 2016 Alexey Shabalin - 1.14.2 - fixed CVE-2015-2695,CVE-2015-2696,CVE-2015-2697,CVE-2015-2698,CVE-2015-8629,CVE-2015-8630,CVE-2015-8631,CVE-2016-3119 - allow verification of attributes on krb5.conf...
Security fix for the ALT Linux 9 package krb5 version 1.14.2-alt1
April 25, 2016 Alexey Shabalin 1.14.2-alt1 - 1.14.2 - fixed CVE-2015-2695,CVE-2015-2696,CVE-2015-2697,CVE-2015-2698,CVE-2015-8629,CVE-2015-8630,CVE-2015-8631,CVE-2016-3119 - allow verification of attributes on krb5.conf...
RedHat Update for krb5 RHSA-2016:0532-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS 7 : krb5 (CESA-2016:0532)
An update for krb5 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Oracle Linux 7 : krb5 (ELSA-2016-0532)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0532 advisory. - Fix CVE-2015-8631, CVE-2015-8630, and CVE-2015-8629 Tenable has extracted the preceding description block directly from the Oracle Linux security...
krb5 security update
1.13.2-12 - Fix CVE-2015-8631, CVE-2015-8630, and CVE-2015-8629 - Remove obsolete trigger to enable building of package - Resolves: 1306969...
openSUSE Security Update : krb5 (openSUSE-2016-230)
This update for krb5 fixes the following issues : - CVE-2015-8629: Information leak authenticated attackers with permissions to modify the database bsc963968 - CVE-2015-8630: An authenticated attacker with permission to modify a principal entry may have caused kadmind to crash bsc963964 -...
Fedora Update for krb5 FEDORA-2016-35492207
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-8630
The 1 kadm5createprincipal3 and 2 kadm5modifyprincipal functions in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service NULL pointer dereference and daemon crash b...
CVE-2015-8630
CVE-2015-8630 affects MIT Kerberos 5 kadmind (kadmind) via kadm5_create_principal_3 and kadm5_modify_principal: if KADM5_POLICY is set and the policy name is NULL, remote authenticated users can trigger a NULL pointer dereference and kadmind crash, leading to a denial of service. Affected are kad...
Updated krb5 packages fix security vulnerability
In all versions of MIT krb5, an authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database CVE-2015-8629. In MIT krb5 1.12 and...
[SECURITY] [DSA 3466-1] krb5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3466-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 04, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3466-1] krb5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3466-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 04, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3466-1 (krb5 - security update)
Several vulnerabilities were discovered in krb5, the MIT implementation of Kerberos. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-8629 It was discovered that an authenticated attacker can cause kadmind to read beyond the end of allocated memory by...
Debian: Security Advisory (DSA-3466-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...