VYPR

rpm package

suse/resource-agents&distro=SUSE Linux Enterprise High Availability Extension 12 SP3

pkg:rpm/suse/resource-agents&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP3

Vulnerabilities (1)

  • CVE-2017-11103HigJul 13, 2017
    affected < 4.0.1+git.1495055229.643177f1-2.4.2fixed 4.0.1+git.1495055229.643177f1-2.4.2

    Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encr