SuSE Local Security Checks : SUSE: Security Advisory for krb5 (SUSE-SU-2014:1028-1)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.850775

Categoría: SuSE Local Security Checks

Título: SUSE: Security Advisory for krb5 (SUSE-SU-2014:1028-1)

Resumen: The remote host is missing an update for the 'krb5'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'krb5'
package(s) announced via the referenced advisory.

Vulnerability Insight:
This MIT krb5 update fixes a buffer overrun problem in kadmind:

* bnc#891082: buffer overrun in kadmind with LDAP back end
(MITKRB5-SA-2014-001) (CVE-2014-4345)

MIT krb5 Security Advisory 2014-001

Affected Software/OS:
krb5 on SUSE Linux Enterprise Server 11 SP3

Solution:
Please install the updated package(s).

CVSS Score:
8.5

CVSS Vector:
AV:N/AC:M/Au:S/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-4345
BugTraq ID: 69168
http://www.securityfocus.com/bid/69168
Debian Security Information: DSA-3000 (Google Search)
http://www.debian.org/security/2014/dsa-3000
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137056.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136640.html
http://security.gentoo.org/glsa/glsa-201412-53.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2014:165
http://www.osvdb.org/109908
RedHat Security Advisories: RHSA-2014:1255
http://rhn.redhat.com/errata/RHSA-2014-1255.html
RedHat Security Advisories: RHSA-2015:0439
http://rhn.redhat.com/errata/RHSA-2015-0439.html
http://www.securitytracker.com/id/1030705
http://secunia.com/advisories/59102
http://secunia.com/advisories/59415
http://secunia.com/advisories/59993
http://secunia.com/advisories/60535
http://secunia.com/advisories/60776
http://secunia.com/advisories/61314
http://secunia.com/advisories/61353
SuSE Security Announcement: SUSE-SU-2014:1028 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-08/msg00009.html
SuSE Security Announcement: openSUSE-SU-2014:1043 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-08/msg00030.html
XForce ISS Database: kerberos-cve20144345-bo(95212)
https://exchange.xforce.ibmcloud.com/vulnerabilities/95212

Copyright Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.850775
Categoría:	SuSE Local Security Checks
Título:	SUSE: Security Advisory for krb5 (SUSE-SU-2014:1028-1)
Resumen:	The remote host is missing an update for the 'krb5'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'krb5' package(s) announced via the referenced advisory. Vulnerability Insight: This MIT krb5 update fixes a buffer overrun problem in kadmind: * bnc#891082: buffer overrun in kadmind with LDAP back end (MITKRB5-SA-2014-001) (CVE-2014-4345) MIT krb5 Security Advisory 2014-001 Affected Software/OS: krb5 on SUSE Linux Enterprise Server 11 SP3 Solution: Please install the updated package(s). CVSS Score: 8.5 CVSS Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-4345 BugTraq ID: 69168 http://www.securityfocus.com/bid/69168 Debian Security Information: DSA-3000 (Google Search) http://www.debian.org/security/2014/dsa-3000 http://lists.fedoraproject.org/pipermail/package-announce/2014-August/137056.html http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136640.html http://security.gentoo.org/glsa/glsa-201412-53.xml http://www.mandriva.com/security/advisories?name=MDVSA-2014:165 http://www.osvdb.org/109908 RedHat Security Advisories: RHSA-2014:1255 http://rhn.redhat.com/errata/RHSA-2014-1255.html RedHat Security Advisories: RHSA-2015:0439 http://rhn.redhat.com/errata/RHSA-2015-0439.html http://www.securitytracker.com/id/1030705 http://secunia.com/advisories/59102 http://secunia.com/advisories/59415 http://secunia.com/advisories/59993 http://secunia.com/advisories/60535 http://secunia.com/advisories/60776 http://secunia.com/advisories/61314 http://secunia.com/advisories/61353 SuSE Security Announcement: SUSE-SU-2014:1028 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-08/msg00009.html SuSE Security Announcement: openSUSE-SU-2014:1043 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-08/msg00030.html XForce ISS Database: kerberos-cve20144345-bo(95212) https://exchange.xforce.ibmcloud.com/vulnerabilities/95212
Copyright	Copyright (C) 2015 Greenbone Networks GmbH