openSUSE Security Update : krb5 (openSUSE-2016-474)
Low Nessus Plugin ID 90564
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for krb5 fixes the following security issue :
- CVE-2016-3119: An authenticated attacker with permission to modify a principal entry could have caused kadmind to dereference a NULL pointer by supplying an empty DB argument to the modify_principal command, if kadmind is configured to use the LDAP KDB module. (bsc#971942)
This update was imported from the SUSE:SLE-12:Update update project.
SolutionUpdate the affected krb5 packages.