Bugs fixes in "krb5"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2016-3119 | The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through | 2019-01-10 |
| CVE | CVE-2015-8631 | Multiple memory leaks in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 allow remote aut | 2019-01-10 |
| CVE | CVE-2015-8630 | The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1. | 2019-01-10 |
| CVE | CVE-2015-8629 | The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 does not verif | 2019-01-10 |
| Launchpad | 1648901 | SPNEGO crash on mechanism failure | 2017-02-02 |
| Launchpad | 1648901 | SPNEGO crash on mechanism failure | 2017-02-02 |
| Launchpad | 1648901 | SPNEGO crash on mechanism failure | 2017-01-23 |
| Launchpad | 1648901 | SPNEGO crash on mechanism failure | 2017-01-23 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2017-01-23 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2017-01-23 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2017-01-23 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2017-01-23 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2016-12-16 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2016-12-16 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2016-12-16 |
| Launchpad | 1643708 | Add SPNEGO special case for NTLMSSP+MechListMIC | 2016-12-16 |
| CVE | CVE-2015-2698 | memory corruption caused due to original patch for CVE-2015-2696 | 2015-11-12 |
| CVE | CVE-2015-2697 | The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1.14 allows remote authenticated users to cause a den | 2015-11-12 |
| CVE | CVE-2015-2696 | lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a | 2015-11-12 |
| CVE | CVE-2015-2695 | lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to | 2015-11-12 |
About
-
Send Feedback to @ubuntu_updates
