Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleELSA-2014-1245
HistorySep 17, 2014 - 12:00 a.m.

krb5 security and bug fix update

2014-09-1700:00:00
Oracle
linux.oracle.com
13

0.936 High

EPSS

Percentile

98.9%

JSON

[1.6.1-78.el5]

  • gssapi: pull in upstream fix for a possible NULL dereference in spnego
    (CVE-2014-4344, #1121509)
    [1.6.1-77.el5]
  • fix what appears to be a cosmetic error in the patch for self-tests
    for CVE-2014-4341
    [1.6.1-76.el5]
  • run the backported self-tests, such as they are, for CVE-2014-4341
    [1.6.1-75.el5]
  • pull in backported fix for denial of service by injection of malformed
    GSSAPI tokens (CVE-2014-4341, #1121509)
    [1.6.1-74.el5]
  • add patch based on one from Filip Krska to not call poll() with a negative
    timeout when the caller’s intent is for us to just stop calling it (#1089732)
    [1.6.1-73.el5]
  • incorporate backported upstream patch for remote crash of KDCs which serve
    multiple realms simultaneously (RT#7756, CVE-2013-1418/CVE-2013-6800,
    [1.6.1-72.el5]
  • add part-backported fix to avoid possible use-after-free when encrypting
    delegated creds (Jatin Nansi, #1004632)

Related

veracode 4
redhat 3
nessus 37
openvas 27
centos 3
prion 4
oraclelinux 2
f5 8
cve 4
ubuntucve 5
ibm 3
fedora 7
amazon 1
aix 1
ubuntu 1
debiancve 3
mageia 3
debian 4
osv 3
checkpoint_advisories 2
securityvulns 2
gentoo 2
freebsd 1
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:04:04
Denial Of Service (DoS)
2019-05-02 05:04:04
Denial Of Service (DoS)
2019-05-02 05:04:04
redhat
redhat
(RHSA-2014:1245) Moderate: krb5 security and bug fix update
2014-09-16 00:00:00
(RHSA-2014:1389) Moderate: krb5 security and bug fix update
2014-10-14 00:00:00
(RHSA-2015:0439) Moderate: krb5 security, bug fix and enhancement update
2015-03-05 00:00:00
nessus
nessus
RHEL 5 : krb5 (RHSA-2014:1245)
2014-09-16 00:00:00
Scientific Linux Security Update : krb5 on SL5.x i386/x86_64 (20140916)
2014-10-14 00:00:00
Oracle Linux 5 : krb5 (ELSA-2014-1245)
2014-09-18 00:00:00
openvas
openvas
RedHat Update for krb5 RHSA-2014:1245-01
2014-09-17 00:00:00
Oracle: Security Advisory (ELSA-2014-1245)
2015-10-06 00:00:00
CentOS Update for krb5-devel CESA-2014:1245 centos5
2014-10-01 00:00:00
centos
centos
krb5 security update
2014-09-30 11:21:52
krb5 security update
2014-10-20 18:09:24
krb5 security update
2015-03-17 13:28:30
prion
prion
Null pointer dereference
2013-11-18 02:55:00
Design/Logic Flaw
2014-07-20 11:12:00
Null pointer dereference
2014-08-14 05:01:00
oraclelinux
oraclelinux
krb5 security and bug fix update
2014-10-15 00:00:00
krb5 security, bug fix and enhancement update
2015-03-11 00:00:00
f5
f5
K15785 : Kerberos vulnerability CVE-2013-6800
2014-11-03 00:00:00
SOL15785 - Kerberos vulnerability CVE-2013-6800
2014-11-03 00:00:00
K15552 : MIT Kerberos 5 vulnerability CVE-2014-4341
2015-11-10 00:00:00
cve
cve
CVE-2013-6800
2013-11-18 02:55:00
CVE-2014-4341
2014-07-20 11:12:00
CVE-2013-1418
2013-11-18 03:55:00
ubuntucve
ubuntucve
CVE-2013-6800
2013-11-17 00:00:00
CVE-2014-4341
2014-07-20 00:00:00
CVE-2014-4344
2014-07-21 00:00:00
ibm
ibm
Security Bulletin: IBM Security Network Intrusion Prevention System is affected by krb5 vulnerabilities (CVE-2014-4341, CVE-2013-1418 )
2022-02-23 19:48:26
Security Bulletin: IBM DataPower Gateway affected by vulnerabilities in Kerberos
2022-06-02 13:24:33
Security Bulletin: Power Hardware Management Console is affected by security vulnerabilities in Kerberos (CVE-2014-4341, CVE-2014-4342, CVE-2014-4343, CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423)
2021-09-23 01:31:39
fedora
fedora
[SECURITY] Fedora 19 Update: krb5-1.11.3-24.fc19
2014-08-07 15:27:20
[SECURITY] Fedora 19 Update: krb5-1.11.3-25.fc19
2014-08-27 01:34:45
[SECURITY] Fedora 20 Update: krb5-1.11.5-10.fc20
2014-08-07 15:32:53
amazon
amazon
Medium: krb5
2014-11-11 10:25:00
aix
aix
Multiple Security vulnerabilities in IBM NAS
2014-08-28 03:15:00
ubuntu
ubuntu
Kerberos vulnerabilities
2014-08-11 00:00:00
debiancve
debiancve
CVE-2014-4341
2014-07-20 11:12:00
CVE-2013-1418
2013-11-18 03:55:00
CVE-2014-4344
2014-08-14 05:01:00
mageia
mageia
Updated krb5 package fixes security vulnerabilities
2014-08-22 14:58:14
Updated krb5 package fixes security vulnerabily
2013-11-21 00:38:57
Updated krb5 package fixes security vulnerabilities
2013-11-21 00:41:07
debian
debian
[SECURITY] [DSA 3000-1] krb5 security update
2014-08-09 14:54:58
[DLA 37-1] krb5 security update
2014-08-18 17:46:47
[SECURITY] [DSA 3000-1] krb5 security update
2014-08-09 14:55:17
osv
osv
krb5 - security update
2014-08-18 00:00:00
krb5 - security update
2014-08-09 00:00:00
krb5 - security update
2018-01-31 00:00:00
checkpoint_advisories
checkpoint_advisories
MIT Kerberos SPNEGO Acceptor acc_ctx_cont Denial of Service (CVE-2014-4344)
2014-09-14 00:00:00
Kerberos Multi-realm KDC NULL Pointer Dereference Denial of Service (CVE-2013-1418)
2013-01-06 00:00:00
securityvulns
securityvulns
MIT Kerberos 5 KDC DoS
2013-11-26 00:00:00
[ MDVSA-2013:275 ] krb5
2013-11-26 00:00:00
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2013-12-16 00:00:00
MIT Kerberos 5: User-assisted execution of arbitrary code
2014-12-31 00:00:00
freebsd
freebsd
krb5 1.11 -- New release/fix multiple vulnerabilities
2015-02-25 00:00:00

0.936 High

EPSS

Percentile

98.9%

JSON
Related for ELSA-2014-1245
veracode4redhat3nessus37openvas27centos3prion4oraclelinux2f58cve4ubuntucve5ibm3fedora7amazon1aix1ubuntu1debiancve3mageia3debian4osv3checkpoint_advisories2securityvulns2gentoo2freebsd1