Next Page >>
krb5
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
MITKRB5-SA-2010-007
MIT krb5 Security Advisory 2010-007
Original release: 2010-11-30
Last update: 2010-11-30
Topic: Multiple checksum handling vulnerabilities
Certain invalid GSS-API tokens can cause a GSS-API acceptor (server)
to crash due to a null pointer dereference in the GSS-API library.
This is an implementation vulnerability in MIT krb5, and not a
vulnerability in the Kerberos protocol.
IMPACT
======
An authenticated remote attacker can cause a GSS-API application
SUMMARY
=======
These are implementation vulnerabilities in MIT krb5, and not
vulnerabilities in the Kerberos protocol.
[CVE-2009-0844]
The MIT krb5 implementation of the SPNEGO GSS-API mechanism can read
beyond the end of a network input buffer. This can cause a GSS-API
Kerberos administration daemon (kadmind) can crash due to referencing
freed memory. A legitimate user can trigger this crash by using a
newer version of the kadmin protocol than the server supports.
This is an implementation vulnerability in MIT krb5, and not a
vulnerability in the Kerberos protocol. This vulnerability is not
present in modern releases of MIT krb5.
IMPACT
======
under theoretically possible but unlikely circumstances, execute
arbitrary malicious code. No exploit is known to exist that would
cause arbitrary code execution.
This is an implementation vulnerability in MIT krb5, and is not a
vulnerability in the Kerberos protocol.
IMPACT
======
[CVE-2009-0846] An unauthenticated, remote attacker could cause a
We have received a proof-of-concept exploit that does not appear to
execute malicious code, and we believe that this exploit is not
publicly circulated.
This is a bug in the RPC library in MIT krb5. It is not a bug in the
Kerberos protocol.
[CVE-2007-4000]
The MIT krb5 Kerberos administration daemon (kadmind) can write data
through an uninitialized pointer. We know of no working exploit code
We have received a proof-of-concept exploit that does not appear to
execute malicious code, and we believe that this exploit is not
publicly circulated.
This is a bug in the RPC library in MIT krb5. It is not a bug in the
Kerberos protocol.
[CVE-2007-4000]
The MIT krb5 Kerberos administration daemon (kadmind) can write data
through an uninitialized pointer. We know of no working exploit code
Mandriva Linux Security Advisory MDVSA-2009:098-1
http://www.mandriva.com/security/
_______________________________________________________________________
Package : krb5
Date : December 8, 2009
Affected: 2008.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2009:098
http://www.mandriva.com/security/
_______________________________________________________________________
Package : krb5
Date : April 27, 2009
Affected: 2008.1, 2009.0, Corporate 3.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
authorization data, causing a crash, or in rare cases, unauthorized
information disclosure, ticket modification, or execution of arbitrary
code. The crash may be triggered by legitimate requests.
This is an implementation vulnerability in MIT krb5, and not a
vulnerability in the Kerberos protocol.
IMPACT
======
An authenticated remote attacker can cause the MIT krb5 KDC process to
In MIT krb5 releases krb5-1.7 and later, the SPNEGO GSS-API mechanism
can experience an assertion failure when receiving certain invalid
messages. This can cause a GSS-API application to crash.
This is an implementation vulnerability in MIT krb5, and not a
vulnerability in the Kerberos protocol.
IMPACT
======
An unauthenticated remote attacker could cause a GSS-API application,
Debian Security Advisory DSA-2129-1 security@debian.org
http://www.debian.org/security/ Stefan Fritsch
December 1, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : krb5
Vulnerability : checksum verification weakness
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2010-1323
ESX 3.0.2 ESX ESX-1004719
ESX 3.0.1 ESX ESX-1004190
ESX 2.5.5 ESX ESX 2.5.5 Upgrade Patch 8
ESX 2.5.4 ESX ESX 2.5.4 Upgrade Patch 19
d. Security update for krb5
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable
for some krb4 message types, which allows remote attackers to
cause a denial of service (crash) and possibly execute arbitrary
code via crafted messages that trigger a NULL pointer dereference
A double free vulnerability exists in the KDC in MIT krb5 releases
krb5-1.7 and later.
This is an implementation vulnerability in MIT krb5, and not a
vulnerability in the Kerberos protocol.
IMPACT
======
An authenticated remote attacker can crash the KDC by inducing the KDC
** One of the three issues, CVE-2011-2482, has already been
addressed on ESX 4.1 in an earlier kernel patch. See
VMSA-2012-0001 for details.
c. ESX third party update for Service Console krb5 RPM
This patch updates the krb5-libs and krb5-workstation RPMs to
version 1.6.1-63.el5_7 to resolve a security issue.
By default, the affected krb5-telnet and ekrb5-telnet services
Mandriva Linux Security Advisory MDVSA-2011:159
http://www.mandriva.com/security/
_______________________________________________________________________
Package : krb5
Date : October 22, 2011
Affected: 2011.
_______________________________________________________________________
Problem Description:
CVE-2010-1321 CVE-2010-1168 CVE-2010-1447
- ------------------------------------------------------------------------
1. Summary
ESX 3.5 Console OS (COS) updates for COS packages perl, krb5, samba,
tar, and cpio.
2. Relevant releases
VMware ESX 3.5 without patches ESX350-201008405-SG,
code execution. Only releases krb5-1.3 and later are vulnerable, as
earlier releases did not contain the functionality implemented by the
vulnerable code.
This is an implementation vulnerability in MIT krb5, and is not a
vulnerability in the Kerberos protocol.
IMPACT
======
An unauthenticated remote attacker can, by inducing the decryption of
A null pointer dereference can occur in an error condition in the KDC
cross-realm referral processing code in MIT krb5-1.7. This can cause
the KDC to crash.
This is an implementation vulnerability in MIT krb5, and is not a
vulnerability in the Kerberos protocol.
IMPACT
======
An unauthenticated remote attacker could cause the KDC to crash due to
Debian Security Advisory DSA-1524-1 security@debian.org
http://www.debian.org/security/ Noah Meyerhans
March 18, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : krb5
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2008-0062 CVE-2008-0063 CVE-2008-0947
CVE-2010-1321 CVE-2010-1168 CVE-2010-1447
- ------------------------------------------------------------------------
1. Summary
ESX 3.5 Console OS (COS) updates for COS packages perl, krb5, samba,
tar, and cpio.
2. Relevant releases
VMware ESX 3.5 without patches ESX350-201008405-SG,
Debian Security Advisory DSA-1766-1 security@debian.org
http://www.debian.org/security/ Nico Golde
April 9th, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------
Package : krb5
Vulnerability : several
Problem type : local/remote
Debian-specific: no
CVE IDs : CVE-2009-0844, CVE-2009-0845, CVE-2009-0847, CVE-2009-0846
Debian Bug : none
Mandriva Linux Security Advisory MDVSA-2011:160
http://www.mandriva.com/security/
_______________________________________________________________________
Package : krb5
Date : October 22, 2011
Affected: 2010.1, Enterprise Server 5.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2010:005
http://www.mandriva.com/security/
_______________________________________________________________________
Package : krb5
Date : January 13, 2010
Affected: Multi Network Firewall 2.0
_______________________________________________________________________
Problem Description:
Debian Security Advisory DSA-1969-1 security@debian.org
http://www.debian.org/security/ Giuseppe Iuculano
January 12, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : krb5
Vulnerability : integer underflow
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2009-4212
Debian Bug : none
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
MITKRB5-SA-2011-008
MIT krb5 Security Advisory 2011-008
Original release: 2011-12-26
Last update: 2011-12-26
Topic: buffer overflow in telnetd
Debian Security Advisory DSA-2052-1 security@debian.org
http://www.debian.org/security/ Sebastien Delafond
May 24, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : krb5
Vulnerability : null pointer dereference
Problem type : remote
Debian-specific: no
CVE Id : CVE-2010-1321
Debian Bug : 582261
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
MITKRB5-SA-2011-005
MIT krb5 Security Advisory 2011-005
Original release: 2011-07-05
Topic: FTP daemon fails to set effective group ID
Debian Security Advisory DSA-2052-1 security@debian.org
http://www.debian.org/security/ Sebastien Delafond
May 24, 2010 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : krb5
Vulnerability : null pointer dereference
Problem type : remote
Debian-specific: no
CVE Id : CVE-2010-1321
Debian Bug : 582261
Mandriva Linux Security Advisory MDVSA-2010:202
http://www.mandriva.com/security/
_______________________________________________________________________
Package : krb5
Date : October 13, 2010
Affected: 2010.1
_______________________________________________________________________
Problem Description:
Next Page>>
|
