CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
71.1%
Package : krb5
Version : 1.12.1+dfsg-19+deb8u5
CVE ID : CVE-2018-5729 CVE-2018-5730 CVE-2018-20217
krb5, a MIT Kerberos implementation, had several flaws in LDAP DN
checking, which could be used to circumvent a DN containership check by
supplying special parameters to some calls.
Further an attacker could crash the KDC by making S4U2Self requests.
For Debian 8 "Jessie",
these problems have been fixed in version 1.12.1+dfsg-19+deb8u5.
We recommend that you upgrade your krb5 packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 8 | armhf | libkrad0 | < 1.12.1+dfsg-19+deb8u5 | libkrad0_1.12.1+dfsg-19+deb8u5_armhf.deb |
Debian | 8 | i386 | krb5-pkinit | < 1.12.1+dfsg-19+deb8u5 | krb5-pkinit_1.12.1+dfsg-19+deb8u5_i386.deb |
Debian | 8 | armhf | krb5-user | < 1.12.1+dfsg-19+deb8u5 | krb5-user_1.12.1+dfsg-19+deb8u5_armhf.deb |
Debian | 9 | armel | krb5-otp | < 1.15-1+deb9u3 | krb5-otp_1.15-1+deb9u3_armel.deb |
Debian | 9 | amd64 | krb5-gss-samples | < 1.15-1+deb9u3 | krb5-gss-samples_1.15-1+deb9u3_amd64.deb |
Debian | 9 | armhf | libk5crypto3 | < 1.15-1+deb9u3 | libk5crypto3_1.15-1+deb9u3_armhf.deb |
Debian | 8 | amd64 | krb5-multidev | < 1.12.1+dfsg-19+deb8u5 | krb5-multidev_1.12.1+dfsg-19+deb8u5_amd64.deb |
Debian | 9 | amd64 | krb5-k5tls | < 1.15-1+deb9u3 | krb5-k5tls_1.15-1+deb9u3_amd64.deb |
Debian | 9 | armel | krb5-pkinit | < 1.15-1+deb9u3 | krb5-pkinit_1.15-1+deb9u3_armel.deb |
Debian | 9 | armel | krb5-gss-samples | < 1.15-1+deb9u3 | krb5-gss-samples_1.15-1+deb9u3_armel.deb |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
Low
EPSS
Percentile
71.1%