vulnerability

SUSE: CVE-2022-42898: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:C)	11/21/2022	11/22/2022	01/28/2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:C)

Published

11/21/2022

Added

11/22/2022

Modified

01/28/2025

Description

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

Solution(s)

suse-upgrade-ctdbsuse-upgrade-ctdb-pcp-pmdasuse-upgrade-krb5suse-upgrade-krb5-32bitsuse-upgrade-krb5-clientsuse-upgrade-krb5-develsuse-upgrade-krb5-devel-32bitsuse-upgrade-krb5-docsuse-upgrade-krb5-minisuse-upgrade-krb5-mini-develsuse-upgrade-krb5-plugin-kdb-ldapsuse-upgrade-krb5-plugin-preauth-otpsuse-upgrade-krb5-plugin-preauth-pkinitsuse-upgrade-krb5-plugin-preauth-spakesuse-upgrade-krb5-serversuse-upgrade-libasn1-8suse-upgrade-libgssapi3suse-upgrade-libhcrypto4suse-upgrade-libhdb9suse-upgrade-libheimbase1suse-upgrade-libheimdal-develsuse-upgrade-libheimedit0suse-upgrade-libheimntlm0suse-upgrade-libhx509-5suse-upgrade-libkadm5clnt7suse-upgrade-libkadm5srv8suse-upgrade-libkafs0suse-upgrade-libkdc2suse-upgrade-libkrb5-26suse-upgrade-libotp0suse-upgrade-libroken18suse-upgrade-libsamba-policy-develsuse-upgrade-libsamba-policy-python3-develsuse-upgrade-libsamba-policy0-python3suse-upgrade-libsamba-policy0-python3-32bitsuse-upgrade-libsamba-policy0-python3-64bitsuse-upgrade-libsl0suse-upgrade-libwind0suse-upgrade-sambasuse-upgrade-samba-ad-dcsuse-upgrade-samba-ad-dc-libssuse-upgrade-samba-ad-dc-libs-32bitsuse-upgrade-samba-cephsuse-upgrade-samba-clientsuse-upgrade-samba-client-32bitsuse-upgrade-samba-client-64bitsuse-upgrade-samba-client-libssuse-upgrade-samba-client-libs-32bitsuse-upgrade-samba-develsuse-upgrade-samba-devel-32bitsuse-upgrade-samba-docsuse-upgrade-samba-dsdb-modulessuse-upgrade-samba-gpupdatesuse-upgrade-samba-ldb-ldapsuse-upgrade-samba-libssuse-upgrade-samba-libs-32bitsuse-upgrade-samba-libs-64bitsuse-upgrade-samba-libs-python3suse-upgrade-samba-libs-python3-32bitsuse-upgrade-samba-libs-python3-64bitsuse-upgrade-samba-python3suse-upgrade-samba-testsuse-upgrade-samba-toolsuse-upgrade-samba-winbindsuse-upgrade-samba-winbind-libssuse-upgrade-samba-winbind-libs-32bit

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today