HomeSolus

Address CVE-2018-5729 and CVE-2018-5730

Authored by sunnyflunk on Mar 12 2018, 3:20 AM.

Description

Address CVE-2018-5729 and CVE-2018-5730

MIT krb5 1.6 or later allows an authenticated kadmin with permission to add
principals to an LDAP Kerberos database to cause a denial of service (NULL
pointer dereference) or bypass a DN container check by supplying tagged data
that is internal to the database module.

MIT krb5 1.6 or later allows an authenticated kadmin with permission to add
principals to an LDAP Kerberos database to circumvent a DN containership check
by supplying both a "linkdn" and "containerdn" database argument, or by
supplying a DN string which is a left extension of a container DN string but is
not hierarchically within the container DN.

Signed-off-by: Peter O'Connor <peter@solus-project.com>

Details

Committed
sunnyflunkMar 12 2018, 3:21 AM
Pushed
sunnyflunkMar 12 2018, 3:25 AM
Parents
R1545:fe4b8164973c: Update kerberos 5 to 1.15.2 to address CVE-2017-11368 and CVE-2017-11462
Branches
Unknown
Tags
Unknown
References
tag: kerberos-5.1.15.2-11