12 matches found
Gentoo Security Advisory GLSA 201201-13 (mit-krb5)
The remote host is missing updates announced in advisory GLSA 201201-13. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
MIT Kerberos KDC Ticket Validation Double Free Memory Corruption (CVE-2010-1320)
Kerberos is a protocol that allows for the negotiation of an authenticated, and optionally encrypted, communication channel between two points on a network. MIT Kerberos V5 is an implementation of this protocol. A memory corruption vulnerability exists in the MIT Kerberos KDC server. The...
Ubuntu Update for krb5 vulnerability USN-940-2
Ubuntu Update for Linux kernel vulnerabilities USN-940-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN9402.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for krb5 vulnerability USN-940-2 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Fedora 13 : krb5-1.7.1-8.fc13 (2010-7102)
Joel Johnson reported a possible double-free in the Kerberos KDC MITKRB5-SA-2010-004, CVE-2010-1320. This update adds the upstream fix for this bug. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted t...
Mac OS X 10.6.x < 10.6.4 Multiple Vulnerabilities
The remote host is running a version of Mac OS X 10.6.x that is prior to 10.6.4. Mac OS X 10.6.4 contains security fixes for the following components : - CUPS - DesktopServices - Flash Player plug-in - Folder Manager - Help Viewer - iChat - ImageIO - Kerberos - Kernel - libcurl - Network...
Fedora Update for krb5 FEDORA-2010-8805
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 : krb5 vulnerabilities (USN-940-1)
It was discovered that Kerberos did not correctly free memory in the GSSAPI and kdb libraries. If a remote attacker were able to manipulate an application using these libraries carefully, the service could crash, leading to a denial of service. Only Ubuntu 6.06 LTS was affected. CVE-2007-5902,...
FreeBSD Ports: krb5
The remote host is missing an update to the system as announced in the referenced advisory. VID 86b8b655-4d1a-11df-83fb-0015587e2cc1 OpenVAS Vulnerability Test $ Description: Auto generated from VID 86b8b655-4d1a-11df-83fb-0015587e2cc1 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Fedora Update for krb5 FEDORA-2010-7130
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
openSUSE Security Update : krb5 (openSUSE-SU-2010:0147-1)
Specially crafted requests be authenticated remote attackers could crash the KDC CVE-2010-1320. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update krb5-2348. The text description of this plugin i...
CVE-2010-1320
CVE-2010-1320: MIT Kerberos 5 is affected by a double-free in do_tgs_req.c (KDC) that allows remote authenticated users to cause a daemon crash or potentially execute arbitrary code. Affected: krb5 1.7.x and 1.8.x before 1.8.2. Impact: denial of service or possible code execution via a renewal/va...
CVE-2010-1320
Double free vulnerability in dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.7.x and 1.8.x before 1.8.2 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a request associated with 1 renewal or 2 validation...