Overview

File _patchinfo of Package patchinfo.2274

<patchinfo incident="2274">
  <issue id="971942" tracker="bnc">VUL-0: CVE-2016-3119 krb5: null pointer dereference in kadmin</issue>
  <issue id="CVE-2016-3119" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>hguo</packager>
  <description>
This update for krb5 fixes the following security issue:

- CVE-2016-3119: An authenticated attacker with permission to modify a
  principal entry could have caused kadmind to dereference a null pointer
  by supplying an empty DB argument to the modify_principal command,
  if kadmind is configured to use the LDAP KDB module. (bsc#971942)
</description>
  <summary>Security update for krb5</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places