MiracleLinux 4 : krb5-1.9-22.AXS4.1 (AXSA:2012-29:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-29:01 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of...

openSUSE Security Update : krb5 (openSUSE-SU-2011:1169-1)

The following issues have been fixed : - CVE-2011-1528: In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. - CVE-2011-1529: In releases krb5-1.8 and later, the KDC can crash due to a NULL pointer dereference. Both bugs could be triggered by unauthenticated remote...

openSUSE Security Update : krb5 (openSUSE-SU-2011:1169-1)

The following issues have been fixed : - CVE-2011-1528: In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. - CVE-2011-1529: In releases krb5-1.8 and later, the KDC can crash due to a NULL pointer dereference. Both bugs could be triggered by unauthenticated remote...

Oracle Linux 6 : krb5 (ELSA-2011-1379)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1379 advisory. 1.9-9.2 - apply upstream patch to fix a null pointer derference with the LDAP kdb backend CVE-2011-1527, an assertion failure with multiple kdb backend...

Scientific Linux Security Update : krb5 on SL6.x i386/x86_64

Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third party, the Key Distribution Center KDC. Multiple NULL pointer dereference and assertion failure flaws were found in the MIT Kerberos KDC when i...

RedHat Update for krb5 RHSA-2011:1379-01

Check for the Version of krb5 OpenVAS Vulnerability Test RedHat Update for krb5 RHSA-2011:1379-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Gentoo Security Advisory GLSA 201201-13 (mit-krb5)

The remote host is missing updates announced in advisory GLSA 201201-13. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Fedora Update for krb5 FEDORA-2011-16284

Check for the Version of krb5 OpenVAS Vulnerability Test Fedora Update for krb5 FEDORA-2011-16284 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Fedora Update for krb5 FEDORA-2011-14650

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 14 : krb5-1.8.4-3.fc14 (2011-14650)

This update applies the upstream patch to fix a NULL pointer dereference wi= th the LDAP kdb backend CVE-2011-1527, an assertion failure with multiple= kdb backends CVE-2011-1528, and a NULL pointer dereference with multiple= kdb backends CVE-2011-1529. 737711...

Fedora 15 : krb5-1.9.1-14.fc15 (2011-14673)

This update applies the upstream patch to fix a NULL pointer dereference wi= th the LDAP kdb backend CVE-2011-1527, 744125, an assertion failure with= multiple kdb backends CVE-2011-1528, and a NULL pointer dereference with= multiple kdb backends CVE-2011-1529. 737711 It also rolls up a number of...

Medium: krb5

Issue Overview: Multiple NULL pointer dereference and assertion failure flaws were found in the MIT Kerberos KDC when it was configured to use an LDAP Lightweight Directory Access Protocol or Berkeley Database Berkeley DB back end. A remote attacker could use these flaws to crash the KDC...

Mandriva Update for krb5 MDVSA-2011:160 (krb5)

Check for the Version of krb5 OpenVAS Vulnerability Test Mandriva Update for krb5 MDVSA-2011:160 krb5 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

krb5: fixed kdc remote denial of service ( CVE-2011-1528, CVE-2011-1529) and unauthorized file access (CVE-2011-1526) (important)

The following issues have been fixed: - CVE-2011-1528: In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. - CVE-2011-1529: In releases krb5-1.8 and later, the KDC can crash due to a null pointer dereference. Both bugs could be triggered by unauthenticated remote...

Mandriva Linux Security Advisory : krb5 (MDVSA-2011:160)

Multiple vulnerabilities has been found and corrected in krb5 : The krb5ldaplockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service assertion...

Ubuntu Update for krb5 USN-1233-1

Ubuntu Update for Linux kernel vulnerabilities USN-1233-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12331.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for krb5 USN-1233-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

CVE-2011-1529

The lookuplockoutpolicy function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 aka Berkeley DB or LDAP back end is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via vectors...

CVE-2011-1529

Summary : CVE-2011-1529 affects MIT Kerberos 5 (krb5) 1.8 up to 1.8.4 and 1.9 up to 1.9.1 when using the db2 (Berkeley DB) or LDAP back ends. The vulnerability allows remote attackers to cause a denial of service via a NULL pointer dereference and daemon crash, triggered by certain process_as_req...

CVE-2011-1529

The lookuplockoutpolicy function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 aka Berkeley DB or LDAP back end is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via vectors...

RHEL 6 : krb5 (RHSA-2011:1379)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1379 advisory. Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a...