Vulners
Lucene search
MiracleLinux 4 : krb5-1.10.3-10.AXS4.1 (AXSA:2013-280:01)
| Reporter | Title | Published | Views | Family All 75 |
|---|---|---|---|---|
 | Security fix for the ALT Linux 7 package krb5 version 1.11.1-alt1 | 30 Mar 201300:00 | – | altlinux |
| Security fix for the ALT Linux 8 package krb5 version 1.11.1-alt1 | 30 Mar 201300:00 | – | altlinux |
| Security fix for the ALT Linux 9 package krb5 version 1.11.1-alt1 | 30 Mar 201300:00 | – | altlinux |
 | CentOS 6 : krb5 (CESA-2013:0656) | 20 Mar 201300:00 | – | nessus |
| Fedora 17 : krb5-1.10.2-9.fc17 (2013-3116) | 17 Mar 201300:00 | – | nessus |
| Fedora 18 : krb5-1.10.3-14.fc18 (2013-3147) | 23 Mar 201300:00 | – | nessus |
| FreeBSD : krb5 -- NULL pointer dereference in the KDC PKINIT code [CVE-2013-1415] (f54584bc-7d2b-11e2-9bd1-206a8a720317) | 24 Feb 201300:00 | – | nessus |
| Mandriva Linux Security Advisory : krb5 (MDVSA-2013:042) | 20 Apr 201300:00 | – | nessus |
| openSUSE Security Update : krb5 (openSUSE-SU-2013:0498-1) | 13 Jun 201400:00 | – | nessus |
| Oracle Linux 6 : krb5 (ELSA-2013-0656) | 12 Jul 201300:00 | – | nessus |
10
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2013-280:01.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(289432);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/16");
script_cve_id("CVE-2012-1016", "CVE-2013-1415");
script_name(english:"MiracleLinux 4 : krb5-1.10.3-10.AXS4.1 (AXSA:2013-280:01)");
script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the
AXSA:2013-280:01 advisory.
Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's
security by eliminating the insecure practice of cleartext passwords.
Security issues fixed with this release:
CVE-2012-1016
The pkinit_server_return_padata function in plugins/preauth/pkinit/pkinit_srv.c in the PKINIT
implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 attempts to
find an agility KDF identifier in inappropriate circumstances, which allows remote attackers to cause a
denial of service (NULL pointer dereference and daemon crash) via a crafted Draft 9 request.
CVE-2013-1415
The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT
implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1.11.x
before 1.11.1 does not properly handle errors during extraction of fields from an X.509 certificate, which
allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a
malformed KRB5_PADATA_PK_AS_REQ AS-REQ request.
Fixed bugs:
Upgraded to upstream version 1.10.3; in particular, better support of cross-domain trust functionality in
other packages.
Previous versions of libsmbclient depended on the krb5_locate_kdc() function. As it is no longer
supported, older version of libsmbclient did not function after updating Kerberos. To fix this, an
explicit conflict with older versions of libsmbclient has been added, which prevents incompatible
combinations.
Leaving the krb5-auth-dialog application prompter hanging for a long period of time triggered a large
clock drift that was applied at the next kinit session. This has been fixed.
Previously, certain KDC implementations omitted some KDC's certificates contained in a PKINIT list of
trusted roots and the client failed to verify the signature on the data. This has been fixed, the client
can now use its own copies for the relevant certificates and verification works as expected.
Previously, when a client's libraries and the KDC supported AES and if a keytab file did not contain the
AES keys, using the kinit command with this file failed because the strongest encryption (AES) was used.
This has been fixed: the encryption in the keytab file is now used, if supported.
Fixed krb5 entering a loop because of timeout variable mishandling.
Previously, passwd failed with the token manipulation error error message if used by an Identity
Management client. This has been fixed.
Fixed some performance issue related to repeated SELinux file context configuration being reloaded every
time the replay cached was flushed.
Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/3913");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-1415");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vendor_severity", value:"High");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/01/02");
script_set_attribute(attribute:"patch_publication_date", value:"2013/03/29");
script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/16");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:krb5-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:krb5-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:krb5-pkinit-openssl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:krb5-server");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:krb5-server-ldap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:krb5-workstation");
script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:4");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Miracle Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");
exit(0);
}
include('rpm2.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^4([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 4.x', 'MIRACLE LINUX ' + os_version);
if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);
var constraints = [
{
'release': '4',
'pkgs': [
{'reference':'krb5-devel-1.10.3-10.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-devel-1.10.3-10.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-libs-1.10.3-10.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-libs-1.10.3-10.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-pkinit-openssl-1.10.3-10.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-pkinit-openssl-1.10.3-10.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-server-1.10.3-10.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-server-1.10.3-10.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-server-ldap-1.10.3-10.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-server-ldap-1.10.3-10.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-workstation-1.10.3-10.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
{'reference':'krb5-workstation-1.10.3-10.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
]
}
];
var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');
var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
# Check that the target release is equal to the affected release
if (!empty_or_null(constraint['release'])){
if (constraint['release'] != os_release) continue;
}
if (!empty_or_null(constraint['sp'])){
if (constraint['sp'] != os_sp) continue;
}
foreach var pkg ( constraint['pkgs'] ) {
reference = NULL;
sp = NULL;
_cpu = NULL;
el_string = NULL;
rpm_spec_vers_cmp = NULL;
epoch = NULL;
allowmaj = NULL;
exists_check = NULL;
cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
## (no known rpm to check OR known rpm_exists)
(!exists_check || rpm_exists(rpm:exists_check)) &&
rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'krb5-devel / krb5-libs / krb5-pkinit-openssl / krb5-server / etc');
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
16 Jan 2026 00:00Current
7.2High risk
Vulners AI Score7.2
CVSS 25
EPSS0.01588