---------------------------------------------------------------------- Secunia integrated with Microsoft WSUS http://secunia.com/blog/71/ ---------------------------------------------------------------------- TITLE: SUSE update for krb5 SECUNIA ADVISORY ID: SA38153 VERIFY ADVISORY: http://secunia.com/advisories/38153/ DESCRIPTION: SUSE has issued an update for krb5. This fixes some vulnerabilities, which can be exploited by malicious users and malicious people to cause a DoS (Denial of Service) and by malicious people to potentially compromise a vulnerable system. For more information: SA37977 SA38080 SOLUTION: Apply updated packages. x86 Platform: openSUSE 11.2: http://download.opensuse.org/debug/update/11.2/rpm/i586/krb5-debuginfo-1.7-6.2.1.i586.rpm http://download.opensuse.org/debug/update/11.2/rpm/i586/krb5-debugsource-1.7-6.2.1.i586.rpm http://download.opensuse.org/debug/update/11.2/rpm/i586/krb5-plugin-preauth-pkinit-debuginfo-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-apps-clients-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-apps-servers-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-client-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-devel-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-plugin-kdb-ldap-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-plugin-preauth-pkinit-1.7-6.2.1.i586.rpm http://download.opensuse.org/update/11.2/rpm/i586/krb5-server-1.7-6.2.1.i586.rpm openSUSE 11.1: http://download.opensuse.org/debug/update/11.1/rpm/i586/krb5-debuginfo-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/debug/update/11.1/rpm/i586/krb5-debugsource-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/update/11.1/rpm/i586/krb5-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/update/11.1/rpm/i586/krb5-apps-clients-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/update/11.1/rpm/i586/krb5-apps-servers-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/update/11.1/rpm/i586/krb5-client-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/update/11.1/rpm/i586/krb5-devel-1.6.3-132.6.1.i586.rpm http://download.opensuse.org/update/11.1/rpm/i586/krb5-server-1.6.3-132.6.1.i586.rpm openSUSE 11.0: http://download.opensuse.org/debug/update/11.0/rpm/i586/krb5-debuginfo-1.6.3-50.7.i586.rpm http://download.opensuse.org/debug/update/11.0/rpm/i586/krb5-debugsource-1.6.3-50.7.i586.rpm http://download.opensuse.org/update/11.0/rpm/i586/krb5-1.6.3-50.7.i586.rpm http://download.opensuse.org/update/11.0/rpm/i586/krb5-apps-clients-1.6.3-50.7.i586.rpm http://download.opensuse.org/update/11.0/rpm/i586/krb5-apps-servers-1.6.3-50.7.i586.rpm http://download.opensuse.org/update/11.0/rpm/i586/krb5-client-1.6.3-50.7.i586.rpm http://download.opensuse.org/update/11.0/rpm/i586/krb5-devel-1.6.3-50.7.i586.rpm http://download.opensuse.org/update/11.0/rpm/i586/krb5-server-1.6.3-50.7.i586.rpm Power PC Platform: openSUSE 11.1: http://download.opensuse.org/debug/update/11.1/rpm/ppc/krb5-debuginfo-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/debug/update/11.1/rpm/ppc/krb5-debuginfo-64bit-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/debug/update/11.1/rpm/ppc/krb5-debugsource-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-64bit-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-apps-clients-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-apps-servers-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-client-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-devel-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-devel-64bit-1.6.3-132.6.1.ppc.rpm http://download.opensuse.org/update/11.1/rpm/ppc/krb5-server-1.6.3-132.6.1.ppc.rpm openSUSE 11.0: http://download.opensuse.org/debug/update/11.0/rpm/ppc/krb5-debuginfo-1.6.3-50.7.ppc.rpm http://download.opensuse.org/debug/update/11.0/rpm/ppc/krb5-debugsource-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-64bit-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-apps-clients-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-apps-servers-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-client-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-devel-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-devel-64bit-1.6.3-50.7.ppc.rpm http://download.opensuse.org/update/11.0/rpm/ppc/krb5-server-1.6.3-50.7.ppc.rpm x86-64 Platform: openSUSE 11.2: http://download.opensuse.org/debug/update/11.2/rpm/x86_64/krb5-debuginfo-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/debug/update/11.2/rpm/x86_64/krb5-debuginfo-32bit-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/debug/update/11.2/rpm/x86_64/krb5-debugsource-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/debug/update/11.2/rpm/x86_64/krb5-plugin-preauth-pkinit-debuginfo-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-32bit-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-apps-clients-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-apps-servers-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-client-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-devel-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-devel-32bit-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-plugin-kdb-ldap-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-plugin-preauth-pkinit-1.7-6.2.1.x86_64.rpm http://download.opensuse.org/update/11.2/rpm/x86_64/krb5-server-1.7-6.2.1.x86_64.rpm openSUSE 11.1: http://download.opensuse.org/debug/update/11.1/rpm/x86_64/krb5-debuginfo-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/debug/update/11.1/rpm/x86_64/krb5-debuginfo-32bit-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/debug/update/11.1/rpm/x86_64/krb5-debugsource-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-32bit-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-apps-clients-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-apps-servers-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-client-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-devel-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-devel-32bit-1.6.3-132.6.1.x86_64.rpm http://download.opensuse.org/update/11.1/rpm/x86_64/krb5-server-1.6.3-132.6.1.x86_64.rpm openSUSE 11.0: http://download.opensuse.org/debug/update/11.0/rpm/x86_64/krb5-debuginfo-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/debug/update/11.0/rpm/x86_64/krb5-debugsource-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-32bit-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-apps-clients-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-apps-servers-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-client-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-devel-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-devel-32bit-1.6.3-50.7.x86_64.rpm http://download.opensuse.org/update/11.0/rpm/x86_64/krb5-server-1.6.3-50.7.x86_64.rpm Sources: openSUSE 11.2: http://download.opensuse.org/update/11.2/rpm/src/krb5-1.7-6.2.1.src.rpm openSUSE 11.1: http://download.opensuse.org/update/11.1/rpm/src/krb5-1.6.3-132.6.1.src.rpm openSUSE 11.0: http://download.opensuse.org/update/11.0/rpm/src/krb5-1.6.3-50.7.src.rpm Our maintenance customers are notified individually. The packages are offered for installation from the maintenance web: SUSE Linux Enterprise Server 10 SP3 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1bedaaa888e968a71e801332958567ed SLE SDK 10 SP3 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1bedaaa888e968a71e801332958567ed SUSE Linux Enterprise 10 SP3 DEBUGINFO http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1bedaaa888e968a71e801332958567ed SUSE Linux Enterprise Desktop 10 SP3 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1bedaaa888e968a71e801332958567ed SLE SDK 10 SP2 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1b314433d001fbc44480d69334488081 SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1b314433d001fbc44480d69334488081 SUSE Linux Enterprise 10 SP2 DEBUGINFO http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1b314433d001fbc44480d69334488081 SUSE Linux Enterprise Desktop 10 SP2 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=1b314433d001fbc44480d69334488081 SLES 11 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=f95c0cbef4a252636c67dd8d77f705f6 SLED 11 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=f95c0cbef4a252636c67dd8d77f705f6 SLE 11 http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=f95c0cbef4a252636c67dd8d77f705f6 SLES 11 DEBUGINFO http://download.novell.com/index.jsp?search=Search&set_restricted=true&keywords=f95c0cbef4a252636c67dd8d77f705f6 ORIGINAL ADVISORY: SUSE-SA:2010:006: http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00006.html OTHER REFERENCES: SA37977: http://secunia.com/advisories/37977/ SA38080: http://secunia.com/advisories/38080/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------