CVE-2024-26461

Upstream information

CVE-2024-26461 at MITRE

Description

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

---

SUSE information

Overall state of this security issue: Does not affect SUSE products

CVSS v3 Scores

	SUSE
Base Score	7.5
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	High
CVSSv3 Version	3.1

SUSE Bugzilla entries: 1220770 [NEW], 1220771 [NEW]

SUSE Security Advisories:

• SUSE-SU-2024:0997-1, published Tue Mar 26 12:36:14 UTC 2024
• SUSE-SU-2024:0999-1, published Tue Mar 26 16:30:06 UTC 2024
• SUSE-SU-2024:1001-1, published Wed Mar 27 08:30:09 UTC 2024
• SUSE-SU-2024:1006-1, published Wed Mar 27 12:30:05 UTC 2024
• SUSE-SU-2024:1148-1, published Mon Apr 8 12:30:38 UTC 2024

List of released packages

Product(s)	Fixed package version(s)	References
Container bci/bci-init:15.5 Container bci/bci-sle15-kernel-module-devel:15.5 Container bci/golang:oldstable-2.2.35 Container bci/golang:oldstable-openssl-12.33 Container bci/golang:stable-openssl-12.33 Container bci/nodejs:18-16.36 Container bci/nodejs:20-6.36 Container bci/openjdk-devel:11-14.73 Container bci/openjdk-devel:17 Container bci/openjdk:11-24.1 Container bci/openjdk:17-26.1 Container bci/php-apache:latest Container bci/php-fpm:latest Container bci/php:latest Container bci/python:3.11-17.31 Container bci/python:3.6-18.32 Container bci/ruby:2.5-16.30 Container bci/rust:1.77 Container bci/rust:stable-1.2.18 Container rancher/seedimage-builder:1.5.1-1.5.1 Container suse/git:2.35-9.8 Container suse/nginx:1.21-10.36 Container suse/pcp:5.2.5-22.65 Container suse/postgres:15.6-17.31 Container suse/postgres:16.2-6.32 Container suse/registry:latest Container suse/rmt-mariadb-client:10.6-15.29 Container suse/rmt-mariadb:10.6-20.2 Container suse/rmt-server:2.15-15.31 Container suse/sle-micro/5.5/toolbox:13.2-2.2.188 Container suse/sle-micro/5.5:2.0.2-4.2.70 Container suse/sle-micro/base-5.5:2.0.2-4.2.51 Container suse/sle-micro/kvm-5.5:2.0.2-2.2.85 Container suse/sle-micro/rt-5.5:2.0.2-3.2.86 Container suse/sle15:15.5.36.11.16 Image SLES15-SP5-CHOST-BYOS-Aliyun Image SLES15-SP5-CHOST-BYOS-Azure Image SLES15-SP5-CHOST-BYOS-EC2 Image SLES15-SP5-CHOST-BYOS-GCE Image SLES15-SP5-CHOST-BYOS-SAP-CCloud Image SLES15-SP5-Micro-5-5 Image SLES15-SP5-Micro-5-5-BYOS Image SLES15-SP5-Micro-5-5-BYOS-EC2 Image SLES15-SP5-Micro-5-5-BYOS-GCE Image SLES15-SP5-Micro-5-5-EC2 Image SLES15-SP5-Micro-5-5-GCE	krb5 >= 1.20.1-150500.3.6.1
Container rancher/elemental-teal-rt/5.4:1.2.3-2.2.132 Container rancher/elemental-teal/5.4:1.2.3-3.2.153 Container suse/ltss/sle15.4/sle15:15.4.3.16 Container suse/manager/4.3/proxy-httpd:4.3.12.9.52.13 Container suse/manager/4.3/proxy-salt-broker:4.3.12.9.42.16 Container suse/manager/4.3/proxy-squid:4.3.12.9.51.7 Container suse/manager/4.3/proxy-ssh:4.3.12.9.42.6 Container suse/manager/4.3/proxy-tftpd:4.3.12.9.42.7 Container suse/sle-micro-rancher/5.3:latest Container suse/sle-micro-rancher/5.4:latest Container suse/sle-micro/5.3/toolbox:13.2-6.8.1 Container suse/sle-micro/5.4/toolbox:13.2-5.15.1 Image SLES15-SP4-CHOST-BYOS Image SLES15-SP4-CHOST-BYOS-Aliyun Image SLES15-SP4-CHOST-BYOS-Azure Image SLES15-SP4-CHOST-BYOS-EC2 Image SLES15-SP4-CHOST-BYOS-GCE Image SLES15-SP4-CHOST-BYOS-SAP-CCloud Image SLES15-SP4-Micro-5-3 Image SLES15-SP4-Micro-5-3-BYOS Image SLES15-SP4-Micro-5-3-BYOS-Azure Image SLES15-SP4-Micro-5-3-BYOS-EC2 Image SLES15-SP4-Micro-5-3-BYOS-GCE Image SLES15-SP4-Micro-5-3-EC2 Image SLES15-SP4-Micro-5-4 Image SLES15-SP4-Micro-5-4-BYOS Image SLES15-SP4-Micro-5-4-BYOS-Azure Image SLES15-SP4-Micro-5-4-BYOS-EC2 Image SLES15-SP4-Micro-5-4-BYOS-GCE Image SLES15-SP4-Micro-5-4-EC2 Image SLES15-SP4-Micro-5-4-GCE	krb5 >= 1.19.2-150400.3.9.1
Container suse/389-ds:2.2-20.39 Image SLES15-SP5-Azure-Basic Image SLES15-SP5-Azure-Standard Image SLES15-SP5-BYOS-Azure Image SLES15-SP5-BYOS-EC2 Image SLES15-SP5-BYOS-GCE Image SLES15-SP5-EC2 Image SLES15-SP5-GCE Image SLES15-SP5-HPC-Azure Image SLES15-SP5-HPC-BYOS-Azure Image SLES15-SP5-HPC-BYOS-EC2 Image SLES15-SP5-HPC-BYOS-GCE Image SLES15-SP5-Hardened-BYOS-Azure Image SLES15-SP5-Hardened-BYOS-EC2 Image SLES15-SP5-Hardened-BYOS-GCE Image SLES15-SP5-SAP-BYOS-Azure Image SLES15-SP5-SAP-BYOS-EC2 Image SLES15-SP5-SAP-BYOS-GCE Image SLES15-SP5-SAP-Hardened-Azure Image SLES15-SP5-SAP-Hardened-BYOS-Azure Image SLES15-SP5-SAP-Hardened-BYOS-EC2 Image SLES15-SP5-SAP-Hardened-BYOS-GCE Image SLES15-SP5-SAP-Hardened-GCE	krb5 >= 1.20.1-150500.3.6.1 krb5-client >= 1.20.1-150500.3.6.1
Container suse/ltss/sle15.3/sle15:15.3.4.25 Container suse/sle-micro-rancher/5.2:latest Container suse/sle-micro/5.1/toolbox:13.2-3.8.1 Container suse/sle-micro/5.2/toolbox:13.2-7.8.1 Container trento/trento-wanda:1.0.0-build1.5.2 Container trento/trento-web:2.0.0-build4.21.2 Image SLES15-SP3-CHOST-BYOS-Aliyun Image SLES15-SP3-CHOST-BYOS-Azure Image SLES15-SP3-CHOST-BYOS-EC2 Image SLES15-SP3-CHOST-BYOS-GCE Image SLES15-SP3-CHOST-BYOS-SAP-CCloud Image SLES15-SP3-Micro-5-1-BYOS-Azure Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM Image SLES15-SP3-Micro-5-1-BYOS-GCE Image SLES15-SP3-Micro-5-2-BYOS-Azure Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM Image SLES15-SP3-Micro-5-2-BYOS-GCE	krb5 >= 1.19.2-150300.16.1
Container suse/sle15:15.2.9.5.424	krb5 >= 1.16.3-150100.3.33.1
Container suse/sles12sp5:6.5.581 Image SLES12-SP5-EC2-ECS-On-Demand	krb5 >= 1.16.3-46.6.1
Image SLES12-SP5-Azure-BYOS Image SLES12-SP5-Azure-Basic-On-Demand Image SLES12-SP5-Azure-HPC-BYOS Image SLES12-SP5-Azure-HPC-On-Demand Image SLES12-SP5-Azure-SAP-BYOS Image SLES12-SP5-Azure-SAP-On-Demand Image SLES12-SP5-Azure-Standard-On-Demand Image SLES12-SP5-EC2-BYOS Image SLES12-SP5-EC2-On-Demand Image SLES12-SP5-EC2-SAP-BYOS Image SLES12-SP5-EC2-SAP-On-Demand Image SLES12-SP5-GCE-BYOS Image SLES12-SP5-GCE-On-Demand Image SLES12-SP5-GCE-SAP-BYOS Image SLES12-SP5-GCE-SAP-On-Demand	krb5 >= 1.16.3-46.6.1 krb5-client >= 1.16.3-46.6.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production	krb5 >= 1.16.3-46.6.1 krb5-32bit >= 1.16.3-46.6.1 krb5-client >= 1.16.3-46.6.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production	krb5 >= 1.16.3-150100.3.33.1 krb5-32bit >= 1.16.3-150100.3.33.1 krb5-client >= 1.16.3-150100.3.33.1
Image SLES15-SP3-BYOS-Azure Image SLES15-SP3-BYOS-EC2-HVM Image SLES15-SP3-BYOS-GCE Image SLES15-SP3-HPC-BYOS-Azure Image SLES15-SP3-HPC-BYOS-EC2-HVM Image SLES15-SP3-HPC-BYOS-GCE Image SLES15-SP3-SAP-BYOS-Azure Image SLES15-SP3-SAP-BYOS-EC2-HVM Image SLES15-SP3-SAP-BYOS-GCE	krb5 >= 1.19.2-150300.16.1 krb5-client >= 1.19.2-150300.16.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production Image SLES15-SP3-SAPCAL-Azure Image SLES15-SP3-SAPCAL-EC2-HVM Image SLES15-SP3-SAPCAL-GCE	krb5 >= 1.19.2-150300.16.1 krb5-32bit >= 1.19.2-150300.16.1 krb5-client >= 1.19.2-150300.16.1
Image SLES15-SP4-BYOS Image SLES15-SP4-BYOS-Azure Image SLES15-SP4-BYOS-EC2 Image SLES15-SP4-BYOS-GCE Image SLES15-SP4-HPC-BYOS Image SLES15-SP4-HPC-BYOS-Azure Image SLES15-SP4-HPC-BYOS-EC2 Image SLES15-SP4-HPC-BYOS-GCE Image SLES15-SP4-HPC-EC2 Image SLES15-SP4-HPC-GCE Image SLES15-SP4-Hardened-BYOS Image SLES15-SP4-Hardened-BYOS-Azure Image SLES15-SP4-Hardened-BYOS-EC2 Image SLES15-SP4-Hardened-BYOS-GCE Image SLES15-SP4-Manager-Proxy-4-3-BYOS Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE Image SLES15-SP4-Manager-Server-4-3 Image SLES15-SP4-Manager-Server-4-3-Azure-llc Image SLES15-SP4-Manager-Server-4-3-Azure-ltd Image SLES15-SP4-Manager-Server-4-3-BYOS Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE Image SLES15-SP4-Manager-Server-4-3-EC2-llc Image SLES15-SP4-Manager-Server-4-3-EC2-ltd Image SLES15-SP4-SAP-BYOS Image SLES15-SP4-SAP-BYOS-Azure Image SLES15-SP4-SAP-BYOS-EC2 Image SLES15-SP4-SAP-BYOS-GCE Image SLES15-SP4-SAP-Hardened Image SLES15-SP4-SAP-Hardened-Azure Image SLES15-SP4-SAP-Hardened-BYOS Image SLES15-SP4-SAP-Hardened-BYOS-Azure Image SLES15-SP4-SAP-Hardened-BYOS-EC2 Image SLES15-SP4-SAP-Hardened-BYOS-GCE Image SLES15-SP4-SAP-Hardened-GCE	krb5 >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1
Image SLES15-SP4-SAP Image SLES15-SP4-SAP-Azure Image SLES15-SP4-SAP-Azure-LI-BYOS Image SLES15-SP4-SAP-Azure-LI-BYOS-Production Image SLES15-SP4-SAP-Azure-VLI-BYOS Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production Image SLES15-SP4-SAP-EC2 Image SLES15-SP4-SAP-GCE Image SLES15-SP4-SAPCAL Image SLES15-SP4-SAPCAL-Azure Image SLES15-SP4-SAPCAL-EC2 Image SLES15-SP4-SAPCAL-GCE	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1
Image SLES15-SP5-SAP-Azure-LI-BYOS Image SLES15-SP5-SAP-Azure-LI-BYOS-Production Image SLES15-SP5-SAP-Azure-VLI-BYOS Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production Image SLES15-SP5-SAPCAL-Azure Image SLES15-SP5-SAPCAL-EC2 Image SLES15-SP5-SAPCAL-GCE	krb5 >= 1.20.1-150500.3.6.1 krb5-32bit >= 1.20.1-150500.3.6.1 krb5-client >= 1.20.1-150500.3.6.1
SUSE Enterprise Storage 7.1	krb5 >= 1.19.2-150300.16.1 krb5-32bit >= 1.19.2-150300.16.1 krb5-client >= 1.19.2-150300.16.1 krb5-devel >= 1.19.2-150300.16.1 krb5-plugin-kdb-ldap >= 1.19.2-150300.16.1 krb5-plugin-preauth-otp >= 1.19.2-150300.16.1 krb5-plugin-preauth-pkinit >= 1.19.2-150300.16.1 krb5-plugin-preauth-spake >= 1.19.2-150300.16.1 krb5-server >= 1.19.2-150300.16.1	Patchnames: SUSE-Storage-7.1-2024-1001
SUSE Liberty Linux 8	krb5-devel >= 1.18.2-27.el8_10 krb5-libs >= 1.18.2-27.el8_10 krb5-pkinit >= 1.18.2-27.el8_10 krb5-server >= 1.18.2-27.el8_10 krb5-server-ldap >= 1.18.2-27.el8_10 krb5-workstation >= 1.18.2-27.el8_10 libkadm5 >= 1.18.2-27.el8_10	Patchnames: RHSA-2024:3268
SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP5	krb5 >= 1.20.1-150500.3.6.1 krb5-32bit >= 1.20.1-150500.3.6.1 krb5-client >= 1.20.1-150500.3.6.1 krb5-devel >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-otp >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-pkinit >= 1.20.1-150500.3.6.1	Patchnames: SUSE-SLE-Module-Basesystem-15-SP5-2024-997
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS	krb5 >= 1.16.3-150100.3.33.1 krb5-32bit >= 1.16.3-150100.3.33.1 krb5-client >= 1.16.3-150100.3.33.1 krb5-devel >= 1.16.3-150100.3.33.1 krb5-plugin-kdb-ldap >= 1.16.3-150100.3.33.1 krb5-plugin-preauth-otp >= 1.16.3-150100.3.33.1 krb5-plugin-preauth-pkinit >= 1.16.3-150100.3.33.1 krb5-server >= 1.16.3-150100.3.33.1	Patchnames: SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-999
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS	krb5 >= 1.19.2-150300.16.1 krb5-32bit >= 1.19.2-150300.16.1 krb5-client >= 1.19.2-150300.16.1 krb5-devel >= 1.19.2-150300.16.1 krb5-plugin-kdb-ldap >= 1.19.2-150300.16.1 krb5-plugin-preauth-otp >= 1.19.2-150300.16.1 krb5-plugin-preauth-pkinit >= 1.19.2-150300.16.1 krb5-plugin-preauth-spake >= 1.19.2-150300.16.1 krb5-server >= 1.19.2-150300.16.1	Patchnames: SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1001
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1006
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1006
SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5	krb5 >= 1.20.1-150500.3.6.1 krb5-32bit >= 1.20.1-150500.3.6.1 krb5-client >= 1.20.1-150500.3.6.1 krb5-devel >= 1.20.1-150500.3.6.1 krb5-plugin-kdb-ldap >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-otp >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-pkinit >= 1.20.1-150500.3.6.1 krb5-server >= 1.20.1-150500.3.6.1	Patchnames: SUSE-SLE-Module-Basesystem-15-SP5-2024-997 SUSE-SLE-Module-Server-Applications-15-SP5-2024-997
SUSE Linux Enterprise Micro 5.1	krb5 >= 1.19.2-150300.16.1	Patchnames: SUSE-SUSE-MicroOS-5.1-2024-1001
SUSE Linux Enterprise Micro 5.2	krb5 >= 1.19.2-150300.16.1	Patchnames: SUSE-SUSE-MicroOS-5.2-2024-1001
SUSE Linux Enterprise Micro 5.3	krb5 >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Micro-5.3-2024-1006
SUSE Linux Enterprise Micro 5.4	krb5 >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Micro-5.4-2024-1006
SUSE Linux Enterprise Micro 5.5	krb5 >= 1.20.1-150500.3.6.1	Patchnames: SUSE-SLE-Micro-5.5-2024-997
SUSE Linux Enterprise Module for Server Applications 15 SP5	krb5-plugin-kdb-ldap >= 1.20.1-150500.3.6.1 krb5-server >= 1.20.1-150500.3.6.1	Patchnames: SUSE-SLE-Module-Server-Applications-15-SP5-2024-997
SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5	krb5 >= 1.16.3-46.6.1 krb5-32bit >= 1.16.3-46.6.1 krb5-client >= 1.16.3-46.6.1 krb5-devel >= 1.16.3-46.6.1 krb5-doc >= 1.16.3-46.6.1 krb5-plugin-kdb-ldap >= 1.16.3-46.6.1 krb5-plugin-preauth-otp >= 1.16.3-46.6.1 krb5-plugin-preauth-pkinit >= 1.16.3-46.6.1 krb5-server >= 1.16.3-46.6.1	Patchnames: SUSE-SLE-SDK-12-SP5-2024-1148 SUSE-SLE-SERVER-12-SP5-2024-1148
SUSE Linux Enterprise Server 15 SP2-LTSS	krb5 >= 1.16.3-150100.3.33.1 krb5-32bit >= 1.16.3-150100.3.33.1 krb5-client >= 1.16.3-150100.3.33.1 krb5-devel >= 1.16.3-150100.3.33.1 krb5-plugin-kdb-ldap >= 1.16.3-150100.3.33.1 krb5-plugin-preauth-otp >= 1.16.3-150100.3.33.1 krb5-plugin-preauth-pkinit >= 1.16.3-150100.3.33.1 krb5-server >= 1.16.3-150100.3.33.1	Patchnames: SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-999
SUSE Linux Enterprise Server 15 SP3-LTSS	krb5 >= 1.19.2-150300.16.1 krb5-32bit >= 1.19.2-150300.16.1 krb5-client >= 1.19.2-150300.16.1 krb5-devel >= 1.19.2-150300.16.1 krb5-plugin-kdb-ldap >= 1.19.2-150300.16.1 krb5-plugin-preauth-otp >= 1.19.2-150300.16.1 krb5-plugin-preauth-pkinit >= 1.19.2-150300.16.1 krb5-plugin-preauth-spake >= 1.19.2-150300.16.1 krb5-server >= 1.19.2-150300.16.1	Patchnames: SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1001
SUSE Linux Enterprise Server 15 SP4-LTSS	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1006
SUSE Linux Enterprise Server for SAP Applications 15 SP2	krb5 >= 1.16.3-150100.3.33.1 krb5-32bit >= 1.16.3-150100.3.33.1 krb5-client >= 1.16.3-150100.3.33.1 krb5-devel >= 1.16.3-150100.3.33.1 krb5-plugin-kdb-ldap >= 1.16.3-150100.3.33.1 krb5-plugin-preauth-otp >= 1.16.3-150100.3.33.1 krb5-plugin-preauth-pkinit >= 1.16.3-150100.3.33.1 krb5-server >= 1.16.3-150100.3.33.1	Patchnames: SUSE-SLE-Product-SLES_SAP-15-SP2-2024-999
SUSE Linux Enterprise Server for SAP Applications 15 SP3	krb5 >= 1.19.2-150300.16.1 krb5-32bit >= 1.19.2-150300.16.1 krb5-client >= 1.19.2-150300.16.1 krb5-devel >= 1.19.2-150300.16.1 krb5-plugin-kdb-ldap >= 1.19.2-150300.16.1 krb5-plugin-preauth-otp >= 1.19.2-150300.16.1 krb5-plugin-preauth-pkinit >= 1.19.2-150300.16.1 krb5-plugin-preauth-spake >= 1.19.2-150300.16.1 krb5-server >= 1.19.2-150300.16.1	Patchnames: SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1001
SUSE Linux Enterprise Server for SAP Applications 15 SP4	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1006
SUSE Linux Enterprise Software Development Kit 12 SP5	krb5-devel >= 1.16.3-46.6.1	Patchnames: SUSE-SLE-SDK-12-SP5-2024-1148
SUSE Manager Proxy 4.3	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1006
SUSE Manager Retail Branch Server 4.3	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.3-2024-1006
SUSE Manager Server 4.3	krb5 >= 1.19.2-150400.3.9.1 krb5-32bit >= 1.19.2-150400.3.9.1 krb5-client >= 1.19.2-150400.3.9.1 krb5-devel >= 1.19.2-150400.3.9.1 krb5-plugin-kdb-ldap >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-otp >= 1.19.2-150400.3.9.1 krb5-plugin-preauth-pkinit >= 1.19.2-150400.3.9.1 krb5-server >= 1.19.2-150400.3.9.1	Patchnames: SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1006
openSUSE Leap 15.5	krb5 >= 1.20.1-150500.3.6.1 krb5-32bit >= 1.20.1-150500.3.6.1 krb5-client >= 1.20.1-150500.3.6.1 krb5-devel >= 1.20.1-150500.3.6.1 krb5-devel-32bit >= 1.20.1-150500.3.6.1 krb5-plugin-kdb-ldap >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-otp >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-pkinit >= 1.20.1-150500.3.6.1 krb5-plugin-preauth-spake >= 1.20.1-150500.3.6.1 krb5-server >= 1.20.1-150500.3.6.1	Patchnames: openSUSE-SLE-15.5-2024-997
openSUSE Leap Micro 5.3	krb5 >= 1.19.2-150400.3.9.1	Patchnames: openSUSE-Leap-Micro-5.3-2024-1006
openSUSE Leap Micro 5.4	krb5 >= 1.19.2-150400.3.9.1	Patchnames: openSUSE-Leap-Micro-5.4-2024-1006
openSUSE Leap Micro 5.5	krb5 >= 1.20.1-150500.3.6.1	Patchnames: openSUSE-Leap-Micro-5.5-2024-997
openSUSE Tumbleweed	krb5 >= 1.21.2-3.1 krb5-32bit >= 1.21.2-3.1 krb5-client >= 1.21.2-3.1 krb5-devel >= 1.21.2-3.1 krb5-devel-32bit >= 1.21.2-3.1 krb5-plugin-kdb-ldap >= 1.21.2-3.1 krb5-plugin-preauth-otp >= 1.21.2-3.1 krb5-plugin-preauth-pkinit >= 1.21.2-3.1 krb5-plugin-preauth-spake >= 1.21.2-3.1 krb5-server >= 1.21.2-3.1	Patchnames: openSUSE-Tumbleweed-2024-13921

---

First public cloud image revisions this CVE is fixed in:

• alibaba/sles-15-sp3-chost-byos-v20240912
• alibaba/sles-15-sp4-chost-byos-v20240612
• alibaba/sles-15-sp5-chost-byos-v20240403
• amazon/suse-manager-proxy-4-3-byos-v20240616-hvm-ssd-x86_64
• amazon/suse-manager-server-4-3-byos-v20240608-hvm-ssd-x86_64
• amazon/suse-manager-server-4-3-v20240602-hvm-ssd-x86_64-llc
• amazon/suse-manager-server-4-3-v20240602-hvm-ssd-x86_64-ltd
• amazon/suse-sle-hpc-15-sp3-byos-v20240809-hvm-ssd-x86_64
• amazon/suse-sle-hpc-15-sp3-byos-v20240819-hvm-ssd-x86_64
• amazon/suse-sle-hpc-15-sp4-byos-v20240809-hvm-ssd-x86_64
• amazon/suse-sle-hpc-15-sp5-byos-v20240604-hvm-ssd-x86_64
• amazon/suse-sle-micro-5-1-byos-v20240616-hvm-ssd-arm64
• amazon/suse-sle-micro-5-1-byos-v20240616-hvm-ssd-x86_64
• amazon/suse-sle-micro-5-2-byos-v20240616-hvm-ssd-arm64
• amazon/suse-sle-micro-5-2-byos-v20240616-hvm-ssd-x86_64
• amazon/suse-sle-micro-5-3-byos-v20240716-hvm-ssd-arm64
• amazon/suse-sle-micro-5-3-v20240404-hvm-ssd-arm64-llc
• amazon/suse-sle-micro-5-3-v20240404-hvm-ssd-arm64-ltd
• amazon/suse-sle-micro-5-3-v20240404-hvm-ssd-x86_64-llc
• amazon/suse-sle-micro-5-3-v20240404-hvm-ssd-x86_64-ltd
• amazon/suse-sle-micro-5-4-byos-v20240426-hvm-ssd-arm64
• amazon/suse-sle-micro-5-4-byos-v20240426-hvm-ssd-x86_64
• amazon/suse-sle-micro-5-4-v20240716-hvm-ssd-arm64-ltd
• amazon/suse-sle-micro-5-4-v20240716-hvm-ssd-x86_64-ltd
• amazon/suse-sle-micro-5-5-byos-v20240722-hvm-ssd-arm64
• amazon/suse-sle-micro-5-5-byos-v20240722-hvm-ssd-x86_64
• amazon/suse-sle-micro-5-5-v20240722-hvm-ssd-arm64-llc
• amazon/suse-sle-micro-5-5-v20240722-hvm-ssd-arm64-ltd
• amazon/suse-sle-micro-5-5-v20240722-hvm-ssd-x86_64-llc
• amazon/suse-sle-micro-5-5-v20240722-hvm-ssd-x86_64-ltd
• amazon/suse-sles-12-sp5-byos-v20240511-hvm-ssd-x86_64
• amazon/suse-sles-12-sp5-v20240609-hvm-ssd-x86_64
• amazon/suse-sles-12-sp5-v20240625-ecs-hvm-ssd-x86_64
• amazon/suse-sles-15-sp3-byos-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-15-sp3-byos-v20240819-hvm-ssd-arm64
• amazon/suse-sles-15-sp3-chost-byos-v20240807-hvm-ssd-arm64
• amazon/suse-sles-15-sp3-chost-byos-v20240807-hvm-ssd-x86_64
• amazon/suse-sles-15-sp3-chost-byos-v20240912-hvm-ssd-x86_64
• amazon/suse-sles-15-sp3-sapcal-v20240819-hvm-ssd-x86_64
• amazon/suse-sles-15-sp4-byos-v20240809-hvm-ssd-arm64
• amazon/suse-sles-15-sp4-byos-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-15-sp4-chost-byos-v20240612-hvm-ssd-arm64
• amazon/suse-sles-15-sp4-chost-byos-v20240612-hvm-ssd-x86_64
• amazon/suse-sles-15-sp4-hardened-byos-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-15-sp4-sapcal-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-15-sp5-byos-v20240430-hvm-ssd-arm64
• amazon/suse-sles-15-sp5-byos-v20240430-hvm-ssd-x86_64
• amazon/suse-sles-15-sp5-chost-byos-v20240403-hvm-ssd-arm64
• amazon/suse-sles-15-sp5-chost-byos-v20240403-hvm-ssd-x86_64
• amazon/suse-sles-15-sp5-hardened-byos-v20240430-hvm-ssd-x86_64
• amazon/suse-sles-15-sp5-sapcal-v20240604-hvm-ssd-x86_64
• amazon/suse-sles-15-sp5-v20240430-ecs-hvm-ssd-x86_64
• amazon/suse-sles-15-sp5-v20240430-hvm-ssd-arm64
• amazon/suse-sles-15-sp5-v20240430-hvm-ssd-x86_64
• amazon/suse-sles-sap-12-sp5-byos-v20240511-hvm-ssd-x86_64
• amazon/suse-sles-sap-12-sp5-v20240430-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp3-byos-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp3-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp4-byos-v20240808-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp4-hardened-byos-v20240808-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp4-v20240809-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp5-byos-v20240430-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp5-hardened-byos-v20240430-hvm-ssd-x86_64
• amazon/suse-sles-sap-15-sp5-v20240430-hvm-ssd-x86_64
• google/sle-hpc-15-sp3-byos-v20240809-x86-64
• google/sle-hpc-15-sp4-byos-v20240809-x86-64
• google/sle-hpc-15-sp5-byos-v20240529-x86-64
• google/sle-micro-5-1-byos-v20240616-x86-64
• google/sle-micro-5-2-byos-v20240616-x86-64
• google/sle-micro-5-3-byos-v20240716-arm64
• google/sle-micro-5-3-byos-v20240716-x86-64
• google/sle-micro-5-4-byos-v20240426-arm64
• google/sle-micro-5-4-byos-v20240426-x86-64
• google/sle-micro-5-5-byos-v20240722-arm64
• google/sle-micro-5-5-byos-v20240722-x86-64
• google/sles-12-sp5-byos-v20240426-x86-64
• google/sles-12-sp5-sap-byos-v20240426-x86-64
• google/sles-12-sp5-sap-v20240426-x86-64
• google/sles-12-sp5-v20240609-x86-64
• google/sles-15-sp3-byos-v20240809-x86-64
• google/sles-15-sp3-chost-byos-v20240807-x86-64
• google/sles-15-sp3-sap-byos-v20240809-x86-64
• google/sles-15-sp3-sap-v20240808-x86-64
• google/sles-15-sp3-sapcal-v20240809-x86-64
• google/sles-15-sp4-byos-v20240808-arm64
• google/sles-15-sp4-byos-v20240808-x86-64
• google/sles-15-sp4-chost-byos-v20240612-arm64
• google/sles-15-sp4-chost-byos-v20240612-x86-64
• google/sles-15-sp4-hardened-byos-v20240808-x86-64
• google/sles-15-sp4-sap-byos-v20240808-x86-64
• google/sles-15-sp4-sap-v20240808-x86-64
• google/sles-15-sp4-sapcal-v20240808-x86-64
• google/sles-15-sp5-byos-v20240427-arm64
• google/sles-15-sp5-byos-v20240427-x86-64
• google/sles-15-sp5-chost-byos-v20240403-arm64
• google/sles-15-sp5-chost-byos-v20240403-x86-64
• google/sles-15-sp5-hardened-byos-v20240427-x86-64
• google/sles-15-sp5-sap-byos-v20240427-x86-64
• google/sles-15-sp5-sap-v20240427-x86-64
• google/sles-15-sp5-sapcal-v20240529-x86-64
• google/sles-15-sp5-v20240427-arm64
• google/sles-15-sp5-v20240427-x86-64
• google/sles-sap-15-sp4-hardened-byos-v20240808-x86-64
• google/sles-sap-15-sp4-hardened-v20240808-x86-64
• google/sles-sap-15-sp5-hardened-byos-v20240427-x86-64
• google/sles-sap-15-sp5-hardened-v20240427-x86-64
• google/suse-manager-proxy-4-3-byos-v20240616-x86-64
• google/suse-manager-server-4-3-byos-v20240608-x86-64
• microsoft/suse-manager-proxy-4-3-byos-v20240508-x86_64
• microsoft/suse-manager-server-4-3-v20240529-x86_64-llc
• microsoft/suse-manager-server-4-3-v20240605-x86_64-ltd
• microsoft/suse-sle-hpc-12-sp5-byos-v20240426-x86_64
• microsoft/suse-sle-hpc-12-sp5-v20240426-x86_64
• microsoft/suse-sle-hpc-15-sp3-byos-v20240809-x86_64
• microsoft/suse-sle-hpc-15-sp4-byos-v20240809-x86_64
• microsoft/suse-sle-hpc-15-sp5-byos-v20240507-x86_64
• microsoft/suse-sle-hpc-15-sp5-v20240507-x86_64
• microsoft/suse-sle-micro-5-3-byos-v20240625-arm64
• microsoft/suse-sle-micro-5-4-byos-v20240716-arm64
• microsoft/suse-sle-micro-5-4-byos-v20240716-x86_64
• microsoft/suse-sle-micro-5-5-v20240722-arm64-llc
• microsoft/suse-sle-micro-5-5-v20240722-arm64-ltd
• microsoft/suse-sles-12-sp5-basic-v20240609-x86_64
• microsoft/suse-sles-12-sp5-byos-v20240601-x86_64
• microsoft/suse-sles-12-sp5-v20240609-x86_64
• microsoft/suse-sles-15-sp3-byos-v20240809-x86_64
• microsoft/suse-sles-15-sp3-chost-byos-v20240807-x86_64
• microsoft/suse-sles-15-sp3-sapcal-v20240809-x86_64
• microsoft/suse-sles-15-sp4-byos-v20240809-arm64
• microsoft/suse-sles-15-sp4-byos-v20240809-x86_64
• microsoft/suse-sles-15-sp4-chost-byos-v20240612-arm64
• microsoft/suse-sles-15-sp4-chost-byos-v20240612-x86_64
• microsoft/suse-sles-15-sp4-hardened-byos-v20240809-x86_64
• microsoft/suse-sles-15-sp4-sapcal-v20240809-x86_64
• microsoft/suse-sles-15-sp5-basic-v20240508-x86_64
• microsoft/suse-sles-15-sp5-byos-v20240508-arm64
• microsoft/suse-sles-15-sp5-byos-v20240508-x86_64
• microsoft/suse-sles-15-sp5-chost-byos-v20240403-arm64
• microsoft/suse-sles-15-sp5-chost-byos-v20240403-x86_64
• microsoft/suse-sles-15-sp5-hardened-byos-v20240508-x86_64
• microsoft/suse-sles-15-sp5-sapcal-v20240508-x86_64
• microsoft/suse-sles-15-sp5-v20240508-arm64
• microsoft/suse-sles-15-sp5-v20240508-x86_64
• microsoft/suse-sles-sap-12-sp5-byos-v20240619-x86_64
• microsoft/suse-sles-sap-12-sp5-v20240426-x86_64
• microsoft/suse-sles-sap-15-sp3-byos-v20240809-x86_64
• microsoft/suse-sles-sap-15-sp3-byos-v20240913-x86_64
• microsoft/suse-sles-sap-15-sp3-byos-v20240915-x86_64
• microsoft/suse-sles-sap-15-sp3-byos-v20240916-x86_64
• microsoft/suse-sles-sap-15-sp3-v20240809-x86_64
• microsoft/suse-sles-sap-15-sp3-v20240913-x86_64
• microsoft/suse-sles-sap-15-sp3-v20240915-x86_64
• microsoft/suse-sles-sap-15-sp3-v20240916-x86_64
• microsoft/suse-sles-sap-15-sp4-byos-v20240809-x86_64
• microsoft/suse-sles-sap-15-sp4-v20240809-x86_64
• microsoft/suse-sles-sap-15-sp5-byos-v20240508-x86_64
• microsoft/suse-sles-sap-15-sp5-hardened-byos-v20240508-x86_64
• microsoft/suse-sles-sap-15-sp5-hardened-v20240508-x86_64
• microsoft/suse-sles-sap-15-sp5-v20240508-x86_64

---

SUSE Timeline for this CVE

CVE page created: Wed Feb 28 23:00:27 2024
CVE page last modified: Tue Sep 17 21:48:27 2024