RedHat Update for krb5 RHSA-2013:0748-01

RedHat Update for krb5 RHSA-2013:0748-01, fixes a NULL pointer dereference flaw in MIT Kerberos KDC, affecting krb5 on Red Hat Enterprise Linux Desktop (v. 6), Server (v. 6), Workstation (v. 6)

Reporter	Title	Published	Views	Family All 54
Amazon	Medium: krb5	18 Apr 201300:00	–	amazon
Tenable Nessus	Amazon Linux AMI : krb5 (ALAS-2013-182)	4 Sep 201300:00	–	nessus
Tenable Nessus	CentOS 6 : krb5 (CESA-2013:0748)	18 Apr 201300:00	–	nessus
Tenable Nessus	Fedora 18 : krb5-1.10.3-15.fc18 (2013-5280)	18 Apr 201300:00	–	nessus
Tenable Nessus	Fedora 17 : krb5-1.10.2-10.fc17 (2013-5286)	18 Apr 201300:00	–	nessus
Tenable Nessus	GLSA-201312-12 : MIT Kerberos 5: Multiple vulnerabilities	17 Dec 201300:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : krb5 (MDVSA-2013:158)	1 May 201300:00	–	nessus
Tenable Nessus	MiracleLinux 4 : krb5-1.10.3-10.AXS4.2 (AXSA:2013-413:02)	19 Jan 202600:00	–	nessus
Tenable Nessus	openSUSE Security Update : krb5 (openSUSE-SU-2013:0904-1)	13 Jun 201400:00	–	nessus
Tenable Nessus	Oracle Linux 6 : krb5 (ELSA-2013-0748)	12 Jul 201300:00	–	nessus

Source	Link
redhat	www.redhat.com/archives/rhsa-announce/2013-April/msg00023.html

###############################################################################
# OpenVAS Vulnerability Test
#
# RedHat Update for krb5 RHSA-2013:0748-01
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "Kerberos is a network authentication system which allows clients and
  servers to authenticate to each other using symmetric encryption and a
  trusted third-party, the Key Distribution Center (KDC).

  A NULL pointer dereference flaw was found in the way the MIT Kerberos KDC
  processed certain TGS (Ticket-granting Server) requests. A remote,
  authenticated attacker could use this flaw to crash the KDC via a
  specially-crafted TGS request. (CVE-2013-1416)

  All krb5 users should upgrade to these updated packages, which contain a
  backported patch to correct this issue. After installing the updated
  packages, the krb5kdc daemon will be restarted automatically.";


tag_solution = "Please Install the Updated Packages.";
tag_affected = "krb5 on Red Hat Enterprise Linux Desktop (v. 6),
  Red Hat Enterprise Linux Server (v. 6),
  Red Hat Enterprise Linux Workstation (v. 6)";


if(description)
{
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_id(870980);
  script_version("$Revision: 8542 $");
  script_tag(name:"last_modification", value:"$Date: 2018-01-26 07:57:28 +0100 (Fri, 26 Jan 2018) $");
  script_tag(name:"creation_date", value:"2013-04-19 09:53:34 +0530 (Fri, 19 Apr 2013)");
  script_cve_id("CVE-2013-1416");
  script_tag(name:"cvss_base", value:"4.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:N/I:N/A:P");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  script_name("RedHat Update for krb5 RHSA-2013:0748-01");

  script_xref(name: "RHSA", value: "2013:0748-01");
  script_xref(name: "URL" , value: "https://www.redhat.com/archives/rhsa-announce/2013-April/msg00023.html");
  script_tag(name: "summary" , value: "Check for the Version of krb5");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2013 Greenbone Networks GmbH");
  script_family("Red Hat Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/rhel", "ssh/login/rpms");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "RHENT_6")
{

  if ((res = isrpmvuln(pkg:"krb5-debuginfo", rpm:"krb5-debuginfo~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"krb5-devel", rpm:"krb5-devel~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"krb5-libs", rpm:"krb5-libs~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"krb5-pkinit-openssl", rpm:"krb5-pkinit-openssl~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"krb5-server", rpm:"krb5-server~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"krb5-server-ldap", rpm:"krb5-server-ldap~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"krb5-workstation", rpm:"krb5-workstation~1.10.3~10.el6_4.2", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

26 Jan 2018 00:00Current

6.3Medium risk

Vulners AI Score6.3

EPSS0.02274