ALT-PU-2018-2231-1
Closed vulnerabilities
BDU:2019-01636
Уязвимость сетевого протокола аутентификации Kerberos, связанная с разыменованием указателя NULL, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2017-7562
An authentication bypass flaw was found in the way krb5's certauth interface before 1.16.1 handled the validation of client certificates. A remote attacker able to communicate with the KDC could potentially use this flaw to impersonate arbitrary principals under rare and erroneous circumstances.
- 100511
- 100511
- RHSA-2018:0666
- RHSA-2018:0666
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7562
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7562
- https://github.com/krb5/krb5/pull/694
- https://github.com/krb5/krb5/pull/694
- https://github.com/krb5/krb5/pull/694/commits/1de6ca2f2eb1fdbab51f1549a25a6903aefcc196
- https://github.com/krb5/krb5/pull/694/commits/1de6ca2f2eb1fdbab51f1549a25a6903aefcc196
- https://github.com/krb5/krb5/pull/694/commits/50fe4074f188c2d4da0c421e96553acea8378db2
- https://github.com/krb5/krb5/pull/694/commits/50fe4074f188c2d4da0c421e96553acea8378db2
- https://github.com/krb5/krb5/pull/694/commits/b7af544e50a4d8291524f590e20dd44430bf627d
- https://github.com/krb5/krb5/pull/694/commits/b7af544e50a4d8291524f590e20dd44430bf627d
Modified: 2024-11-21
CVE-2018-5729
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module.
- 1042071
- 1042071
- RHBA-2019:0327
- RHBA-2019:0327
- RHSA-2018:3071
- RHSA-2018:3071
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891869
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891869
- https://bugzilla.redhat.com/show_bug.cgi?id=1551083
- https://bugzilla.redhat.com/show_bug.cgi?id=1551083
- https://github.com/krb5/krb5/commit/e1caf6fb74981da62039846931ebdffed71309d1
- https://github.com/krb5/krb5/commit/e1caf6fb74981da62039846931ebdffed71309d1
- [debian-lts-announce] 20190125 [SECURITY] [DLA 1643-1] krb5 security update
- [debian-lts-announce] 20190125 [SECURITY] [DLA 1643-1] krb5 security update
- [debian-lts-announce] 20210930 [SECURITY] [DLA 2771-1] krb5 security update
- [debian-lts-announce] 20210930 [SECURITY] [DLA 2771-1] krb5 security update
- FEDORA-2018-391a1f3e61
- FEDORA-2018-391a1f3e61
- FEDORA-2018-f97cb1c9b0
- FEDORA-2018-f97cb1c9b0
Modified: 2024-11-21
CVE-2018-5730
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership check by supplying both a "linkdn" and "containerdn" database argument, or by supplying a DN string which is a left extension of a container DN string but is not hierarchically within the container DN.
- 1042071
- 1042071
- RHBA-2019:0327
- RHBA-2019:0327
- RHSA-2018:3071
- RHSA-2018:3071
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891869
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891869
- https://bugzilla.redhat.com/show_bug.cgi?id=1551082
- https://bugzilla.redhat.com/show_bug.cgi?id=1551082
- https://github.com/krb5/krb5/commit/e1caf6fb74981da62039846931ebdffed71309d1
- https://github.com/krb5/krb5/commit/e1caf6fb74981da62039846931ebdffed71309d1
- [debian-lts-announce] 20190125 [SECURITY] [DLA 1643-1] krb5 security update
- [debian-lts-announce] 20190125 [SECURITY] [DLA 1643-1] krb5 security update
- [debian-lts-announce] 20210930 [SECURITY] [DLA 2771-1] krb5 security update
- [debian-lts-announce] 20210930 [SECURITY] [DLA 2771-1] krb5 security update
- FEDORA-2018-391a1f3e61
- FEDORA-2018-391a1f3e61
- FEDORA-2018-f97cb1c9b0
- FEDORA-2018-f97cb1c9b0