openSUSE-SU-2023:0048-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2023:0048-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2023:0048-1
Upstream
Related
Published
2023-02-18T15:01:17Z
Modified
2025-05-07T18:14:46.240688Z
Summary
Security update for gssntlmssp
Details

This update for gssntlmssp fixes the following issues:

Update to version 1.2.0

  • Implement gsssetcred_option.
  • Allow to gsswrap even if NEGOTIATESEAL is not negotiated.
  • Move HMAC code to OpenSSL EVP API.
  • Fix crash bug when acceptor credentials are NULL.
  • Translations update from Fedora Weblate.

Fix security issues:

  • CVE-2023-25563 (boo#1208278): multiple out-of-bounds read when decoding NTLM fields.
  • CVE-2023-25564 (boo#1208279): memory corruption when decoding UTF16 strings.
  • CVE-2023-25565 (boo#1208280): incorrect free when decoding target information.
  • CVE-2023-25566 (boo#1208281): memory leak when parsing usernames.
  • CVE-2023-25567 (boo#1208282): out-of-bounds read when decoding target information.

Update to version 1.1

  • various build fixes and better compatibility when a MIC is requested.

Update to version 1.0

  • Fix testgssapirfc5587.
  • Actually run tests with make check.
  • Add two tests around NTLMSSPNEGOTIATELMKEY.
  • Refine LM compatibility level logic.
  • Refactor the gssntlmrequiredsecurity function.
  • Implement reading LM/NT hashes.
  • Add test for smpasswd-like user files.
  • Return confidentiality status.
  • Fix segfault in sign/seal functions.
  • Fix dummy signature generation.
  • Use UCS16LE instead of UCS-2LE.
  • Provide a zero lm key if the password is too long.
  • Completely omit CBs AV pairs when no CB provided.
  • Change license to the more permissive ISC.
  • Do not require cached users with winbind.
  • Add ability to pass keyfile via cred store.
  • Remove unused parts of Makefile.am.
  • Move attribute names to allocated strings.
  • Adjust serialization for name attributes.
  • Fix crash in acquiring credentials.
  • Fix fallback to external_creds interface.
  • Introduce parseusername() function.
  • Add test for parseusername.
  • Change how we assemble user names in ASC.
  • Use thread local storage for winbind context.
  • Make per thread winbind context optional.
  • Fixed memleak of usr_cred.
  • Support get_sids request via name attributes.
  • Fixed memory leaks found by valgrind.
  • Update to version 0.9
  • add support for getting session key.
  • Add gssinquireattrsformech().
  • Return actual data for RFC5587 API.
  • Add new Windows version flags.
  • Add Key exchange also when wanting integrity only.
  • Drop support for GSSCMANOTDFLT_MECH.
References

Affected packages

SUSE:Package Hub 15 SP4 / gssntlmssp

Package

Name
gssntlmssp
Purl
pkg:rpm/suse/gssntlmssp&distro=SUSE%20Package%20Hub%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.0-bp154.2.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "gssntlmssp-devel": "1.2.0-bp154.2.3.1",
            "gssntlmssp": "1.2.0-bp154.2.3.1"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2023:0048-1.json"

openSUSE:Leap 15.4 / gssntlmssp

Package

Name
gssntlmssp
Purl
pkg:rpm/opensuse/gssntlmssp&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.2.0-bp154.2.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "gssntlmssp-devel": "1.2.0-bp154.2.3.1",
            "gssntlmssp": "1.2.0-bp154.2.3.1"
        }
    ]
}

Database specific

source

"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2023:0048-1.json"