Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2015:10282

Overview

Id SUSE-2015:10282
Name Novell SUSE 2015:10282 krb5-20150206 security update for SLE 11 SP3 i586
Vendor Name novell
Product Novell
Content Type Critical Critical
Language(s)
Operating System(s) Linux 
Released On 06 Feb 2015 12:00:00

SUSE-2015:10282

Novell SUSE 2015:10282 krb5-20150206 security update for SLE 11 SP3 i586

Vendor Name

novell

Product

Novell

Released On

06 Feb 2015 12:00:00

Url

http://www.novell.com/support

Description

LSAC(v2)
krb5 has been updated to fix four security issues: * CVE-2014-5352: gss_process_context_token() incorrectly frees context (bsc#912002) * CVE-2014-9421: kadmind doubly frees partial deserialization results (bsc#912002) * CVE-2014-9422: kadmind incorrectly validates server principal name (bsc#912002) * CVE-2014-9423: libgssrpc server applications leak uninitialized bytes (bsc#912002) Additionally, these non-security issues have been fixed: * Winbind process hangs indefinitely without DC. (bsc#872912) * Hanging winbind processes. (bsc#906557) Security Issues: * CVE-2014-5352 * CVE-2014-9421 * CVE-2014-9422 * CVE-2014-9423

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches


Last Updated: 27 May 2016 11:20:44