[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Six krb5 issues will be fixed with the upcoming DLA.
Markus Koschany
apo at debian.org
Wed Jan 31 12:33:44 UTC 2018
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
781c8581 by Markus Koschany at 2018-01-31T13:33:09+01:00
Six krb5 issues will be fixed with the upcoming DLA.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -87837,13 +87837,11 @@ CVE-2016-3121
CVE-2016-3120 (The validate_as_request function in kdc_util.c in the Key Distribution ...)
- krb5 1.14.3+dfsg-1 (bug #832572)
[jessie] - krb5 1.12.1+dfsg-19+deb8u3
- [wheezy] - krb5 <no-dsa> (Minor issue; can be fixed along with a future DSA)
NOTE: https://github.com/krb5/krb5/commit/93b4a6306a0026cf1cc31ac4bd8a49ba5d034ba7
NOTE: http://krbdev.mit.edu/rt/Ticket/Display.html?id=8458
CVE-2016-3119 (The process_db_args function in ...)
- krb5 1.14.2+dfsg-1 (bug #819468)
[jessie] - krb5 1.12.1+dfsg-19+deb8u3
- [wheezy] - krb5 <no-dsa> (Minor issue; can be fixed along with a future DSA)
NOTE: https://github.com/krb5/krb5/commit/08c642c09c38a9c6454ab43a9b53b2a89b9eef99
CVE-2016-3118 (CRLF injection vulnerability in CA API Gateway (formerly Layer7 API ...)
NOT-FOR-US: CA API Gateway
@@ -134455,7 +134453,6 @@ CVE-2014-5357
RESERVED
CVE-2014-5355 (MIT Kerberos 5 (aka krb5) through 1.13.1 incorrectly expects that a ...)
- krb5 1.12.1+dfsg-18 (bug #778647)
- [wheezy] - krb5 <no-dsa> (Minor issue)
[squeeze] - krb5 <no-dsa> (Minor issue)
NOTE: Upstream commit: https://github.com/krb5/krb5/commit/102bb6ebf20f9174130c85c3b052ae104e5073ec
CVE-2014-5354 (plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka ...)
@@ -134465,7 +134462,6 @@ CVE-2014-5354 (plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5
NOTE: Upstream commit: https://github.com/krb5/krb5/commit/04038bf3633c4b909b5ded3072dc88c8c419bf16
CVE-2014-5353 (The krb5_ldap_get_password_policy_from_dn function in ...)
- krb5 1.12.1+dfsg-16 (bug #773226)
- [wheezy] - krb5 <no-dsa> (Minor issue)
[squeeze] - krb5 <no-dsa> (Minor issue, needs elevated privileges to trigger crash)
NOTE: Upstream commit: https://github.com/krb5/krb5/commit/d1f707024f1d0af6e54a18885322d70fa15ec4d3
CVE-2014-5352 (The krb5_gss_process_context_token function in ...)
@@ -134473,7 +134469,6 @@ CVE-2014-5352 (The krb5_gss_process_context_token function in ...)
- krb5 1.12.1+dfsg-17
CVE-2014-5351 (The kadm5_randkey_principal_3 function in ...)
- krb5 1.12.1+dfsg-10 (bug #762479)
- [wheezy] - krb5 <no-dsa> (Minor issue)
[squeeze] - krb5 <no-dsa> (Minor issue)
NOTE: http://krbdev.mit.edu/rt/Ticket/Display.html?id=8018
NOTE: Upstream commit: https://github.com/krb5/krb5/commit/af0ed4df4dfae762ab5fb605f5a0c8f59cb4f6ca
@@ -165092,7 +165087,6 @@ CVE-2013-1419
CVE-2013-1418 (The setup_server_realm function in main.c in the Key Distribution ...)
- krb5 1.11.3+dfsg-3+nmu1 (low; bug #728845)
[squeeze] - krb5 <no-dsa> (Minor issue)
- [wheezy] - krb5 <no-dsa> (Minor issue)
NOTE: http://krbdev.mit.edu/rt/Ticket/Display.html?id=7757
NOTE: https://github.com/krb5/krb5/commit/5d2d9a1abe46a2c1a8614d4672d08d9d30a5f8bf
CVE-2013-1417 (do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/781c85810d78991bcf0b910663a214be69b60863
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/781c85810d78991bcf0b910663a214be69b60863
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180131/42de8206/attachment.html>
More information about the Secure-testing-commits
mailing list