Test Kennung:	1.3.6.1.4.1.25623.1.0.891643
Kategorie:	Debian Local Security Checks
Titel:	Debian LTS: Security Advisory for krb5 (DLA-1643-1)
Zusammenfassung:	krb5, a MIT Kerberos implementation, had several flaws in LDAP DN;checking, which could be used to circumvent a DN containership check by;supplying special parameters to some calls.;;Further an attacker could crash the KDC by making S4U2Self requests.
Beschreibung:	Summary: krb5, a MIT Kerberos implementation, had several flaws in LDAP DN checking, which could be used to circumvent a DN containership check by supplying special parameters to some calls. Further an attacker could crash the KDC by making S4U2Self requests. Affected Software/OS: krb5 on Debian Linux Solution: For Debian 8 'Jessie', these problems have been fixed in version 1.12.1+dfsg-19+deb8u5. We recommend that you upgrade your krb5 packages. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2018-5729 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GK5T6JPMBHBPKS7HNGHYUUF4KKRMNSNU/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIFUL3CPM4S5TOXTTOCQ3CUZN6XCXUTR/ https://lists.debian.org/debian-lts-announce/2019/01/msg00020.html https://lists.debian.org/debian-lts-announce/2021/09/msg00019.html RedHat Security Advisories: RHBA-2019:0327 https://access.redhat.com/errata/RHBA-2019:0327 RedHat Security Advisories: RHSA-2018:3071 https://access.redhat.com/errata/RHSA-2018:3071 http://www.securitytracker.com/id/1042071 Common Vulnerability Exposure (CVE) ID: CVE-2018-5730
Copyright	Copyright (C) 2019 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.