DSA-4455-1 heimdal -- heimdal| ID: oval:org.secpod.oval:def:603934 | Date: (C)2019-06-19 (M)2023-12-20 |
| Class: PATCH | Family: unix |
Several vulnerabilities were discovered in Heimdal, an implementation of Kerberos 5 that aims to be compatible with MIT Kerberos. CVE-2018-16860 Isaac Boukris and Andrew Bartlett discovered that Heimdal was susceptible to man-in-the-middle attacks caused by incomplete checksum validation. Details on the issue can be found in the Samba advisory at https://www.samba.org/samba/security/CVE-2018-16860.html CVE-2019-12098 It was discovered that failure of verification of the PA-PKINIT-KX key exchange client-side could permit to perform man-in-the-middle attack.
| Product: |
| libsl0-heimdal |
| libhcrypto4-heimdal |
| libwind0-heimdal |
| heimdal-servers |
| libgssapi3-heimdal |
| libkadm5srv8-heimdal |
| heimdal-kcm |
| libheimntlm0-heimdal |
| heimdal-docs |
| libheimbase1-heimdal |
| libhdb9-heimdal |
| libkrb5-26-heimdal |
| libotp0-heimdal |
| libasn1-8-heimdal |
| heimdal-dev |
| libkafs0-heimdal |
| libkadm5clnt7-heimdal |
| libroken18-heimdal |
| heimdal-dbg |
| heimdal-kdc |
| libhx509-5-heimdal |
| heimdal-multidev |
| libkdc2-heimdal |
| heimdal-clients |
