rpm package
suse/resource-agents&distro=SUSE Linux Enterprise High Availability Extension 12 SP3
pkg:rpm/suse/resource-agents&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-11103 | Hig | 8.1 | < 4.0.1+git.1495055229.643177f1-2.4.2 | 4.0.1+git.1495055229.643177f1-2.4.2 | Jul 13, 2017 | Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encr |
- affected < 4.0.1+git.1495055229.643177f1-2.4.2fixed 4.0.1+git.1495055229.643177f1-2.4.2
Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encr