Request 54232: Submit krb5 - openSUSE Build Service

Overview

Request 54232 accepted

- Fix multiple checksum handling vulnerabilities
(MITKRB5-SA-2010-007, bnc#650650)
CVE-2010-1324
* krb5 GSS-API applications may accept unkeyed checksums
* krb5 application services may accept unkeyed PAC checksums
* krb5 KDC may accept low-entropy KrbFastArmoredReq checksums
CVE-2010-1323
* krb5 clients may accept unkeyed SAM-2 challenge checksums
* krb5 may accept KRB-SAFE checksums with low-entropy derived keys
CVE-2010-4021
* krb5 KDC may issue unrequested tickets due to KrbFastReq forgery
- add correct error table when initializing gss-krb5 (bnc#606584,
bnc#608295)

Created by mcalmer over 13 years ago
In state accepted

Submit krb5

Comments for request 54232 0

Login required, please login in order to comment

Request History

mcalmer created request over 13 years ago

- Fix multiple checksum handling vulnerabilities
(MITKRB5-SA-2010-007, bnc#650650)
CVE-2010-1324
* krb5 GSS-API applications may accept unkeyed checksums
* krb5 application services may accept unkeyed PAC checksums
* krb5 KDC may accept low-entropy KrbFastArmoredReq checksums
CVE-2010-1323
* krb5 clients may accept unkeyed SAM-2 challenge checksums
* krb5 may accept KRB-SAFE checksums with low-entropy derived keys
CVE-2010-4021
* krb5 KDC may issue unrequested tickets due to KrbFastReq forgery
- add correct error table when initializing gss-krb5 (bnc#606584,
bnc#608295)

oertel accepted request over 13 years ago

Accepted submit request 54232 from user mcalmer

openSUSE Build Service is sponsored by