Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-2695HistoryNov 09, 2015 - 3:59 a.m.
CVE-2015-2695
2015-11-0903:59:00
Debian Security Bug Tracker
security-tracker.debian.org
7
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.095 Low
EPSS
Percentile
94.8%
lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that is mishandled during a gss_inquire_context call.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | krb5 | < 1.13.2+dfsg-3 | krb5_1.13.2+dfsg-3_all.deb |
| Debian | 11 | all | krb5 | < 1.13.2+dfsg-3 | krb5_1.13.2+dfsg-3_all.deb |
| Debian | 10 | all | krb5 | < 1.13.2+dfsg-3 | krb5_1.13.2+dfsg-3_all.deb |
| Debian | 999 | all | krb5 | < 1.13.2+dfsg-3 | krb5_1.13.2+dfsg-3_all.deb |
| Debian | 13 | all | krb5 | < 1.13.2+dfsg-3 | krb5_1.13.2+dfsg-3_all.deb |
Related
nessus
nessus
SUSE SLED11 / SLES11 Security Update : krb5 (SUSE-SU-2015:2294-1)
2015-12-18 00:00:00
SUSE SLED11 / SLES11 Security Update : krb5 (SUSE-SU-2015:1898-1)
2015-11-05 00:00:00
Debian DLA-340-1 : krb5 security update
2015-11-09 00:00:00
prion
prion
Design/Logic Flaw
2015-11-09 03:59:00
suse
suse
Security update for krb5 (important)
2015-11-04 11:11:18
Security update for krb5 (important)
2015-11-17 11:16:41
Security update for krb5 (important)
2015-11-06 18:12:23
ubuntucve
ubuntucve
CVE-2015-2695
2015-11-08 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:2294-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1898-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-340-1)
2023-03-08 00:00:00
cve
cve
CVE-2015-2695
2015-11-09 03:59:00
nvd
nvd
CVE-2015-2695
2015-11-09 03:59:00
cvelist
cvelist
CVE-2015-2695
2015-11-09 02:00:00
debian
debian
[SECURITY] [DLA 340-1] krb5 security update
2015-11-07 18:22:33
[SECURITY] [DSA 3395-1] krb5 security update
2015-11-06 19:49:54
[SECURITY] [DSA 3395-1] krb5 security update
2015-11-06 19:49:54
osv
osv
krb5 - security update
2015-11-07 00:00:00
krb5 - security update
2015-11-06 00:00:00
krb5 - security update
2015-11-06 00:00:00
ibm
ibm
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2016-11-20 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: krb5-1.13.2-12.fc23
2015-11-02 18:55:23
[SECURITY] Fedora 21 Update: krb5-1.12.2-19.fc21
2015-11-24 22:51:08
[SECURITY] Fedora 22 Update: krb5-1.13.2-10.fc22
2015-11-19 12:25:51
mageia
mageia
Updated krb5 packages fix security vulnerabilities
2015-11-07 23:11:27
ubuntu
ubuntu
Kerberos vulnerabilities
2015-11-12 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package krb5 version 1.14.2-alt1
2016-04-25 00:00:00
Security fix for the ALT Linux 8 package krb5 version 1.14.2-alt1
2016-04-26 00:00:00
Security fix for the ALT Linux 7 package krb5 version 1.13.7-alt0.M70P.1
2017-04-13 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.095 Low
EPSS
Percentile
94.8%
Related for DEBIANCVE:CVE-2015-2695