43 matches found
MiracleLinux 8 : krb5-1.18.2-8.3.el8 (AXSA:2021-2428:02)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2428:02 advisory. krb5: Sending a request containing PA-ENCRYPTED-CHALLENGE padata element without using FAST could result in NULL dereference in KDC which leads to D...
MiracleLinux 7 : krb5-1.15.1-51.el7 (AXSA:2021-2558:03)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2558:03 advisory. krb5: NULL pointer dereference in processtgsreq in kdc/dotgsreq.c via a FAST inner body that lacks server field CVE-2021-37750 Tenable has extracted the...
Siemens SIMATIC S7-1500 NULL Pointer Dereference (CVE-2021-37750)
The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
SUSE: Security Advisory (SUSE-SU-2024:1702-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12: krb5 / krb5-32bit / krb5-client / krb5-devel / krb5-doc / etc (SUSE-SU-2024:1702-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:1702-1 advisory. Fixed inside previous release v1.16.3-46.3.1: - CVE-2021-37750: Fixed KDC null pointer dereference via a FAST inner body that lacked a serve...
USN-5959-1: Kerberos vulnerabilities Severity | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that Kerberos incorrectly handled memory when processing KDC data, which could lead to a NULL pointer dereference. An attacker could possibly use this issue to cause a denial of service ...
USN-5959-1: Kerberos vulnerabilities
It was discovered that Kerberos incorrectly handled memory when processing KDC data, which could lead to a NULL pointer dereference. An attacker could possibly use this issue to cause a denial of service or have other unspecified impacts. CVE-2021-36222, CVE-2021-37750...
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2023-1263)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 3.0.2.2 : krb5 (EulerOS-SA-2023-1263)
According to the versions of the krb5 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in...
SUSE: Security Advisory (SUSE-SU-2022:4154-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Vulnerability in MIT Kerberos 5 affects PowerSC (CVE-2021-37750)
Summary There is a vulnerability in MIT Kerberos 5 that affects PowerSC CVE-2021-37750. Vulnerability Details CVEID:CVE-2021-37750 DESCRIPTION: MIT Kerberos 5 aka krb5 is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in kdc/dotgsreq.c in the Key Distribution Center...
CVE-2021-37750 affecting package krb5 for versions less than 1.19.3-1
CVE-2021-37750 affecting package krb5 for versions less than 1.19.3-1. An upgraded version of the package is available that resolves this issue...
Security Bulletin: IBM QRadar Network Packet Capture is using components with known vulnerabilities
Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. The product has addressed these issues. Vulnerability Details CVEID: CVE-2021-42574 DESCRIPTION: Unicode could allow a remote attacker to execute arbitrary code ...
Security fix for the ALT Linux 9 package krb5 version 1.17.2-alt3
1.17.2-alt3 built March 21, 2022 Ivan A. Melnikov in task 296674 March 15, 2022 Ivan A. Melnikov - Backport fix from 1.18.5 Fixes: CVE-2021-37750...
Security fix for the ALT Linux 10 package krb5 version 1.19.3-alt1
1.19.3-alt1 built March 18, 2022 Ivan A. Melnikov in task 296676 --- March 15, 2022 Ivan A. Melnikov - 1.19.3 Fixes: CVE-2021-37750...
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2022-1172)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : krb5 (EulerOS-SA-2022-1172)
According to the versions of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c...
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2022-1071)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2022-1125)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AlmaLinux 8 : krb5 (ALSA-2021:3576)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:3576 advisory. - ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote...