UbuntuUpdates.org

Package "libkrb5-3"

Name: libkrb5-3

Description:

MIT Kerberos runtime libraries

Latest version: 1.16-2ubuntu0.1
Release: bionic (18.04)
Level: updates
Repository: main
Head package: krb5
Homepage: http://web.mit.edu/kerberos/

Links


Download "libkrb5-3"


Other versions of "libkrb5-3" in Bionic

Repository Area Version
base main 1.16-2build1
security main 1.16-2ubuntu0.1

Changelog

Version: 1.16-2ubuntu0.1 2019-01-14 23:06:38 UTC

  krb5 (1.16-2ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Authenticated kadmin with permission to add principals
    to an LDAP Kerberos can DoS or bypass DN container check.
    - debian/patches/CVE-2018-5729-CVE-2018-5730.patch: Fix flaws in LDAP DN
      checking
    - CVE-2018-5729
    - CVE-2018-5730

 -- Eduardo Barretto <email address hidden> Fri, 11 Jan 2019 13:48:01 -0200

CVE-2018-5729 MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NUL
CVE-2018-5730 MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership



About   -   Send Feedback to @ubuntu_updates