Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
krb5
(any)
krb5-32bit
(any)
krb5-64bit
(any)
krb5-apps-clients
(any)
krb5-apps-servers
(any)
krb5-client
(any)
krb5-debuginfo
(any)
krb5-debuginfo-32bit
(any)
krb5-debuginfo-64bit
(any)
krb5-debuginfo-x86
(any)
krb5-debugsource
(any)
krb5-devel
(any)
krb5-devel-32bit
(any)
krb5-devel-64bit
(any)
krb5-plugin-kdb-ldap
(any)
krb5-plugin-preauth-pkinit
(any)
krb5-plugin-preauth-pkinit-debuginfo
(any)
krb5-server
(any)
krb5-x86
(any)
Описание
Уведомление безопасности об уязвимостях openSUSE 11.0, openSUSE 11.1, openSUSE 11.2, SLE SDK 10 SP2, SLE SDK 10 SP3, SUSE Linux Enterprise Desktop 10 SP2, SUSE Linux Enterprise Desktop 10 SP3, SUSE Linux Enterprise Server 10 SP2, SUSE Linux Enterprise Server 10 SP3, SLED 11, SLES 11
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
openSUSE 11.2:
i586:
krb5-apps-clients - 1.7-6.2.1
krb5-server - 1.7-6.2.1
krb5-plugin-preauth-pkinit-debuginfo - 1.7-6.2.1
krb5-plugin-preauth-pkinit - 1.7-6.2.1
krb5 - 1.7-6.2.1
krb5-plugin-kdb-ldap - 1.7-6.2.1
krb5-debuginfo - 1.7-6.2.1
krb5-apps-servers - 1.7-6.2.1
krb5-client - 1.7-6.2.1
krb5-devel - 1.7-6.2.1
krb5-debugsource - 1.7-6.2.1
openSUSE 11.1:
i586:
krb5-apps-clients - 1.6.3-132.6.1
krb5-debuginfo - 1.6.3-132.6.1
krb5-apps-servers - 1.6.3-132.6.1
krb5-server - 1.6.3-132.6.1
krb5 - 1.6.3-132.6.1
krb5-debugsource - 1.6.3-132.6.1
krb5-devel - 1.6.3-132.6.1
krb5-client - 1.6.3-132.6.1
openSUSE 11.0:
i586:
krb5-apps-servers - 1.6.3-50.7
krb5-devel - 1.6.3-50.7
krb5-apps-clients - 1.6.3-50.7
krb5-debugsource - 1.6.3-50.7
krb5-client - 1.6.3-50.7
krb5-server - 1.6.3-50.7
krb5 - 1.6.3-50.7
krb5-debuginfo - 1.6.3-50.7
SUSE Linux Enterprise Software Development Kit 10 SP3:
ia64:
krb5-apps-clients - 1.4.3-19.44.1
krb5-apps-servers - 1.4.3-19.44.1
krb5-server - 1.4.3-19.44.1
SUSE Linux Enterprise Server 11:
ppc64:
krb5 - 1.6.3-133.26.1
krb5-32bit - 1.6.3-133.26.1
krb5-apps-clients - 1.6.3-133.26.1
krb5-apps-servers - 1.6.3-133.26.1
krb5-client - 1.6.3-133.26.1
krb5-server - 1.6.3-133.26.1
krb5-debuginfo - 1.6.3-133.26.1
krb5-debuginfo-32bit - 1.6.3-133.26.1
krb5-debugsource - 1.6.3-133.26.1
SUSE SUSE Linux Enterprise Software Development Kit 10 SP2:
ia64:
krb5-apps-clients - 1.4.3-19.43.2
krb5-apps-servers - 1.4.3-19.43.2
krb5-server - 1.4.3-19.43.2
SUSE Linux Enterprise Desktop 11:
i586:
krb5 - 1.6.3-133.26.1
krb5-client - 1.6.3-133.26.1
SUSE Linux Enterprise Server 10 SP3:
ia64:
krb5 - 1.4.3-19.44.1
krb5-apps-clients - 1.4.3-19.44.1
krb5-apps-servers - 1.4.3-19.44.1
krb5-client - 1.4.3-19.44.1
krb5-devel - 1.4.3-19.44.1
krb5-server - 1.4.3-19.44.1
krb5-x86 - 1.4.3-19.44.1
krb5-debuginfo - 1.4.3-19.44.1
SUSE Linux Enterprise Server 10 SP2:
ia64:
krb5 - 1.4.3-19.43.2
krb5-apps-clients - 1.4.3-19.43.2
krb5-apps-servers - 1.4.3-19.43.2
krb5-client - 1.4.3-19.43.2
krb5-devel - 1.4.3-19.43.2
krb5-server - 1.4.3-19.43.2
krb5-x86 - 1.4.3-19.43.2
krb5-debuginfo - 1.4.3-19.43.2
SUSE Linux Enterprise Desktop 10 SP3:
i586:
krb5 - 1.4.3-19.44.1
krb5-client - 1.4.3-19.44.1
krb5-devel - 1.4.3-19.44.1
SUSE Linux Enterprise Desktop 10 SP2:
i586:
krb5 - 1.4.3-19.43.2
krb5-client - 1.4.3-19.43.2
krb5-devel - 1.4.3-19.43.2
openSUSE 11.2:
i586:
krb5-apps-clients - 1.7-6.2.1
krb5-server - 1.7-6.2.1
krb5-plugin-preauth-pkinit-debuginfo - 1.7-6.2.1
krb5-plugin-preauth-pkinit - 1.7-6.2.1
krb5 - 1.7-6.2.1
krb5-plugin-kdb-ldap - 1.7-6.2.1
krb5-debuginfo - 1.7-6.2.1
krb5-apps-servers - 1.7-6.2.1
krb5-client - 1.7-6.2.1
krb5-devel - 1.7-6.2.1
krb5-debugsource - 1.7-6.2.1
openSUSE 11.1:
i586:
krb5-apps-clients - 1.6.3-132.6.1
krb5-debuginfo - 1.6.3-132.6.1
krb5-apps-servers - 1.6.3-132.6.1
krb5-server - 1.6.3-132.6.1
krb5 - 1.6.3-132.6.1
krb5-debugsource - 1.6.3-132.6.1
krb5-devel - 1.6.3-132.6.1
krb5-client - 1.6.3-132.6.1
openSUSE 11.0:
i586:
krb5-apps-servers - 1.6.3-50.7
krb5-devel - 1.6.3-50.7
krb5-apps-clients - 1.6.3-50.7
krb5-debugsource - 1.6.3-50.7
krb5-client - 1.6.3-50.7
krb5-server - 1.6.3-50.7
krb5 - 1.6.3-50.7
krb5-debuginfo - 1.6.3-50.7
SUSE Linux Enterprise Software Development Kit 10 SP3:
ia64:
krb5-apps-clients - 1.4.3-19.44.1
krb5-apps-servers - 1.4.3-19.44.1
krb5-server - 1.4.3-19.44.1
SUSE Linux Enterprise Server 11:
ppc64:
krb5 - 1.6.3-133.26.1
krb5-32bit - 1.6.3-133.26.1
krb5-apps-clients - 1.6.3-133.26.1
krb5-apps-servers - 1.6.3-133.26.1
krb5-client - 1.6.3-133.26.1
krb5-server - 1.6.3-133.26.1
krb5-debuginfo - 1.6.3-133.26.1
krb5-debuginfo-32bit - 1.6.3-133.26.1
krb5-debugsource - 1.6.3-133.26.1
SUSE SUSE Linux Enterprise Software Development Kit 10 SP2:
ia64:
krb5-apps-clients - 1.4.3-19.43.2
krb5-apps-servers - 1.4.3-19.43.2
krb5-server - 1.4.3-19.43.2
SUSE Linux Enterprise Desktop 11:
i586:
krb5 - 1.6.3-133.26.1
krb5-client - 1.6.3-133.26.1
SUSE Linux Enterprise Server 10 SP3:
ia64:
krb5 - 1.4.3-19.44.1
krb5-apps-clients - 1.4.3-19.44.1
krb5-apps-servers - 1.4.3-19.44.1
krb5-client - 1.4.3-19.44.1
krb5-devel - 1.4.3-19.44.1
krb5-server - 1.4.3-19.44.1
krb5-x86 - 1.4.3-19.44.1
krb5-debuginfo - 1.4.3-19.44.1
SUSE Linux Enterprise Server 10 SP2:
ia64:
krb5 - 1.4.3-19.43.2
krb5-apps-clients - 1.4.3-19.43.2
krb5-apps-servers - 1.4.3-19.43.2
krb5-client - 1.4.3-19.43.2
krb5-devel - 1.4.3-19.43.2
krb5-server - 1.4.3-19.43.2
krb5-x86 - 1.4.3-19.43.2
krb5-debuginfo - 1.4.3-19.43.2
SUSE Linux Enterprise Desktop 10 SP3:
i586:
krb5 - 1.4.3-19.44.1
krb5-client - 1.4.3-19.44.1
krb5-devel - 1.4.3-19.44.1
SUSE Linux Enterprise Desktop 10 SP2:
i586:
krb5 - 1.4.3-19.43.2
krb5-client - 1.4.3-19.43.2
krb5-devel - 1.4.3-19.43.2
Ссылки
https://www.suse.com/support/security/advisories/2010_06_krb5.html
Источник: CVE
Наименование: CVE-2009-4212
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4212
Источник: CVE
Наименование: CVE-2009-3295
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3295
Источник: CVE
Наименование: CVE-2009-4212
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4212
Источник: CVE
Наименование: CVE-2009-3295
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3295