openSUSE Security Update : krb5 (openSUSE-2016-230)
Medium Nessus Plugin ID 88854
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for krb5 fixes the following issues :
- CVE-2015-8629: Information leak authenticated attackers with permissions to modify the database (bsc#963968)
- CVE-2015-8630: An authenticated attacker with permission to modify a principal entry may have caused kadmind to crash (bsc#963964)
- CVE-2015-8631: An authenticated attacker could have caused a memory leak in auditd by supplying a null principal name in request (bsc#963975)
This update was imported from the SUSE:SLE-12:Update update project.
SolutionUpdate the affected krb5 packages.