Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:C)
Производитель ПО
Наименование ПО
krb5
(any)
krb5-32bit
(any)
krb5-client
(any)
krb5-client-debuginfo
(any)
krb5-debuginfo
(any)
krb5-debuginfo-32bit
(any)
krb5-debugsource
(any)
krb5-devel
(any)
krb5-devel-32bit
(any)
krb5-doc
(any)
krb5-mini
(any)
krb5-mini-debuginfo
(any)
krb5-mini-debugsource
(any)
krb5-mini-devel
(any)
krb5-plugin-kdb-ldap
(any)
krb5-plugin-kdb-ldap-debuginfo
(any)
krb5-plugin-preauth-otp
(any)
krb5-plugin-preauth-otp-debuginfo
(any)
krb5-plugin-preauth-pkinit
(any)
krb5-plugin-preauth-pkinit-debuginfo
(any)
krb5-server
(any)
krb5-server-debuginfo
(any)
Описание
Уведомление безопасности об уязвимостях openSUSE 13.1, openSUSE 13.2
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
openSUSE 13.1:
x86_64:
krb5-32bit - 1.11.3-3.21.1
krb5-debuginfo-32bit - 1.11.3-3.21.1
krb5-devel-32bit - 1.11.3-3.21.1
openSUSE 13.1:
i586, x86_64:
krb5-mini - 1.11.3-3.21.1
krb5-plugin-preauth-pkinit-debuginfo - 1.11.3-3.21.1
krb5-mini-devel - 1.11.3-3.21.1
krb5-debugsource - 1.11.3-3.21.1
krb5 - 1.11.3-3.21.1
krb5-client-debuginfo - 1.11.3-3.21.1
krb5-mini-debugsource - 1.11.3-3.21.1
krb5-server-debuginfo - 1.11.3-3.21.1
krb5-debuginfo - 1.11.3-3.21.1
krb5-doc - 1.11.3-3.21.1
krb5-plugin-kdb-ldap-debuginfo - 1.11.3-3.21.1
krb5-plugin-kdb-ldap - 1.11.3-3.21.1
krb5-plugin-preauth-pkinit - 1.11.3-3.21.1
krb5-mini-debuginfo - 1.11.3-3.21.1
krb5-client - 1.11.3-3.21.1
krb5-devel - 1.11.3-3.21.1
krb5-server - 1.11.3-3.21.1
openSUSE 13.2:
x86_64:
krb5-devel-32bit - 1.12.2-15.1
krb5-32bit - 1.12.2-15.1
krb5-debuginfo-32bit - 1.12.2-15.1
openSUSE 13.2:
i586, x86_64:
krb5-server-debuginfo - 1.12.2-15.1
krb5 - 1.12.2-15.1
krb5-plugin-preauth-otp - 1.12.2-15.1
krb5-mini-debuginfo - 1.12.2-15.1
krb5-plugin-kdb-ldap-debuginfo - 1.12.2-15.1
krb5-client-debuginfo - 1.12.2-15.1
krb5-plugin-preauth-pkinit-debuginfo - 1.12.2-15.1
krb5-debuginfo - 1.12.2-15.1
krb5-mini-devel - 1.12.2-15.1
krb5-debugsource - 1.12.2-15.1
krb5-plugin-kdb-ldap - 1.12.2-15.1
krb5-server - 1.12.2-15.1
krb5-mini - 1.12.2-15.1
krb5-doc - 1.12.2-15.1
krb5-devel - 1.12.2-15.1
krb5-plugin-preauth-otp-debuginfo - 1.12.2-15.1
krb5-mini-debugsource - 1.12.2-15.1
krb5-client - 1.12.2-15.1
krb5-plugin-preauth-pkinit - 1.12.2-15.1
openSUSE 13.1:
x86_64:
krb5-32bit - 1.11.3-3.21.1
krb5-debuginfo-32bit - 1.11.3-3.21.1
krb5-devel-32bit - 1.11.3-3.21.1
openSUSE 13.1:
i586, x86_64:
krb5-mini - 1.11.3-3.21.1
krb5-plugin-preauth-pkinit-debuginfo - 1.11.3-3.21.1
krb5-mini-devel - 1.11.3-3.21.1
krb5-debugsource - 1.11.3-3.21.1
krb5 - 1.11.3-3.21.1
krb5-client-debuginfo - 1.11.3-3.21.1
krb5-mini-debugsource - 1.11.3-3.21.1
krb5-server-debuginfo - 1.11.3-3.21.1
krb5-debuginfo - 1.11.3-3.21.1
krb5-doc - 1.11.3-3.21.1
krb5-plugin-kdb-ldap-debuginfo - 1.11.3-3.21.1
krb5-plugin-kdb-ldap - 1.11.3-3.21.1
krb5-plugin-preauth-pkinit - 1.11.3-3.21.1
krb5-mini-debuginfo - 1.11.3-3.21.1
krb5-client - 1.11.3-3.21.1
krb5-devel - 1.11.3-3.21.1
krb5-server - 1.11.3-3.21.1
openSUSE 13.2:
x86_64:
krb5-devel-32bit - 1.12.2-15.1
krb5-32bit - 1.12.2-15.1
krb5-debuginfo-32bit - 1.12.2-15.1
openSUSE 13.2:
i586, x86_64:
krb5-server-debuginfo - 1.12.2-15.1
krb5 - 1.12.2-15.1
krb5-plugin-preauth-otp - 1.12.2-15.1
krb5-mini-debuginfo - 1.12.2-15.1
krb5-plugin-kdb-ldap-debuginfo - 1.12.2-15.1
krb5-client-debuginfo - 1.12.2-15.1
krb5-plugin-preauth-pkinit-debuginfo - 1.12.2-15.1
krb5-debuginfo - 1.12.2-15.1
krb5-mini-devel - 1.12.2-15.1
krb5-debugsource - 1.12.2-15.1
krb5-plugin-kdb-ldap - 1.12.2-15.1
krb5-server - 1.12.2-15.1
krb5-mini - 1.12.2-15.1
krb5-doc - 1.12.2-15.1
krb5-devel - 1.12.2-15.1
krb5-plugin-preauth-otp-debuginfo - 1.12.2-15.1
krb5-mini-debugsource - 1.12.2-15.1
krb5-client - 1.12.2-15.1
krb5-plugin-preauth-pkinit - 1.12.2-15.1
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00014.html
https://bugzilla.suse.com/952188
https://bugzilla.suse.com/952189
https://bugzilla.suse.com/952190
Источник: CVE
Наименование: CVE-2015-2695
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2695
Источник: CVE
Наименование: CVE-2015-2696
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2696
Источник: CVE
Наименование: CVE-2015-2697
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2697
https://bugzilla.suse.com/952188
https://bugzilla.suse.com/952189
https://bugzilla.suse.com/952190
Источник: CVE
Наименование: CVE-2015-2695
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2695
Источник: CVE
Наименование: CVE-2015-2696
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2696
Источник: CVE
Наименование: CVE-2015-2697
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2697