7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.738 High
EPSS
Percentile
98.1%
Issue Overview:
Multiple NULL pointer dereference and assertion failure flaws were found in the MIT Kerberos KDC when it was configured to use an LDAP (Lightweight Directory Access Protocol) or Berkeley Database (Berkeley DB) back end. A remote attacker could use these flaws to crash the KDC. (CVE-2011-1527, CVE-2011-1528, CVE-2011-1529)
Affected Packages:
krb5
Issue Correction:
Run yum update krb5 to update your system.
New Packages:
i686:
krb5-devel-1.9-9.19.amzn1.i686
krb5-server-ldap-1.9-9.19.amzn1.i686
krb5-server-1.9-9.19.amzn1.i686
krb5-pkinit-openssl-1.9-9.19.amzn1.i686
krb5-libs-1.9-9.19.amzn1.i686
krb5-workstation-1.9-9.19.amzn1.i686
krb5-debuginfo-1.9-9.19.amzn1.i686
src:
krb5-1.9-9.19.amzn1.src
x86_64:
krb5-libs-1.9-9.19.amzn1.x86_64
krb5-server-1.9-9.19.amzn1.x86_64
krb5-debuginfo-1.9-9.19.amzn1.x86_64
krb5-server-ldap-1.9-9.19.amzn1.x86_64
krb5-workstation-1.9-9.19.amzn1.x86_64
krb5-devel-1.9-9.19.amzn1.x86_64
krb5-pkinit-openssl-1.9-9.19.amzn1.x86_64
Red Hat: CVE-2011-1527
Mitre: CVE-2011-1527
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 1 | i686 | krb5-devel | < 1.9-9.19.amzn1 | krb5-devel-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | krb5-server-ldap | < 1.9-9.19.amzn1 | krb5-server-ldap-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | krb5-server | < 1.9-9.19.amzn1 | krb5-server-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | krb5-pkinit-openssl | < 1.9-9.19.amzn1 | krb5-pkinit-openssl-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | krb5-libs | < 1.9-9.19.amzn1 | krb5-libs-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | krb5-workstation | < 1.9-9.19.amzn1 | krb5-workstation-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | i686 | krb5-debuginfo | < 1.9-9.19.amzn1 | krb5-debuginfo-1.9-9.19.amzn1.i686.rpm |
Amazon Linux | 1 | x86_64 | krb5-libs | < 1.9-9.19.amzn1 | krb5-libs-1.9-9.19.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | krb5-server | < 1.9-9.19.amzn1 | krb5-server-1.9-9.19.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | krb5-debuginfo | < 1.9-9.19.amzn1 | krb5-debuginfo-1.9-9.19.amzn1.x86_64.rpm |