openSUSE 10 Security Update : krb5-apps-clients (krb5-apps-clients-1937)
High Nessus Plugin ID 27312
SynopsisThe remote openSUSE host is missing a security update.
DescriptionVarious return checks of setuid() and seteuid() calls have been fixed in kerberos client and server applications.
If these applications are setuid, it might have been possible for local attackers to gain root access (CVE-2006-3083).
We are not affected by the seteuid() problems, tracked by CVE-2006-3084.
SolutionUpdate the affected krb5-apps-clients packages.