Download
| Alert*
oval:org.secpod.oval:def:2107166
Oracle Solaris 11 - ( CVE-2016-2124 ) oval:org.secpod.oval:def:66944 The host is missing a critical security update 4586808 oval:org.secpod.oval:def:66946 The host is missing a critical security update 4586823 oval:org.secpod.oval:def:66949 The host is missing an important security update for KB4586834 oval:org.secpod.oval:def:66927 Kerberos Security Feature Bypass Vulnerability oval:org.secpod.oval:def:507695 Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos ... oval:org.secpod.oval:def:66937 The host is missing a critical security update for KB4586781 oval:org.secpod.oval:def:2600252 Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos ... oval:org.secpod.oval:def:66939 The host is missing a critical security update for KB4586786 oval:org.secpod.oval:def:1506666 [1.20.1-8.0.1] - Fixed race condition in krb5_set_password [Orabug: 33609767] [1.20.1-8] - Fix datetime parsing in kadmin on s390x - Resolves: rhbz#2169985 [1.20.1-7] - Fix double free on kdb5_util key creation failure - Resolves: rhbz#2166603 [1.20.1-6] - Add support for MS-PAC extended KDC signatu ... oval:org.secpod.oval:def:66950 The host is missing an important security update for KB4586845 oval:org.secpod.oval:def:4501521 Rocky Enterprise Software Foundation Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fix: * Kerberos: delegation constrain bypass in S4U2Proxy * ipa: Invalid CSRF protection ... oval:org.secpod.oval:def:2501309 AlmaLinux Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. oval:org.secpod.oval:def:1507255 bind-dyndb-ldap custodia ipa [4.9.12-11.0.1] - Resolves: 2242828 Invalid CSRF protection ipa-healthcheck opendnssec python-jwcrypto python-kdcproxy [0.4-5] - Always buffer TCP data in __handle_recv - Resolves: #1747144 [0.4-4] - Correct addrs sorting to be by TCP/UDP - Resolves: #1732898 python-qrc ... oval:org.secpod.oval:def:66948 The host is missing an important security update for KB4586830 oval:org.secpod.oval:def:66941 The host is missing an important security update for KB4586793 oval:org.secpod.oval:def:509054 Red Hat Identity Management is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fix: Kerberos: delegation constrain bypass in S4U2Proxy ipa: Invalid CSRF protection For more details about the secur ... oval:org.secpod.oval:def:19500187 All versions of Samba prior to 4.13.16 are vulnerable to a malicious client using an SMB1 or NFS race to allow a directory to be created in an area of the server file system not exported under the share definition. Note that SMB1 has to be enabled, or the share also available via NFS in order for th ... oval:org.secpod.oval:def:1601603 It was found that the Kerberos Key Distribution Center delegation feature, Service for User , did not sufficiently protect the tickets it's providing from tempering. A malicious, authenticated service principal allowed to delegate could use this flaw to impersonate a non-forwardable user. A flaw wa ... |