Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-37370HistoryJun 28, 2024 - 10:15 p.m.
CVE-2024-37370
2024-06-2822:15:02
Debian Security Bug Tracker
security-tracker.debian.org
9
mit kerberos 5
krb5
extra count field
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | krb5 | <= 1.20.1-2+deb12u1 | krb5_1.20.1-2+deb12u1_all.deb |
| Debian | 11 | all | krb5 | <= 1.18.3-6+deb11u4 | krb5_1.18.3-6+deb11u4_all.deb |
| Debian | 999 | all | krb5 | < 1.21.3-1 | krb5_1.21.3-1_all.deb |
| Debian | 13 | all | krb5 | <= 1.21.2-1 | krb5_1.21.2-1_all.deb |
Related
nvd
nvd
CVE-2024-37370
2024-06-28 22:15:02
cvelist
cvelist
CVE-2024-37370
2024-06-28 00:00:00
redhatcve
redhatcve
CVE-2024-37370
2024-06-28 05:08:57
cve
cve
CVE-2024-37370
2024-06-28 22:15:02