13 matches found
MIT Kerberos 5 KDC prep_reprocess_req NULL Pointer Dereference (CVE-2013-1416)
A denial-of-service vulnerability exists in MIT Kerberos 5 KDC server...
Oracle Linux 6 : krb5 (ELSA-2013-0748)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0748 advisory. 1.10.3-10.2 - incorporate upstream patch to fix a NULL pointer dereference while processing certain TGS requests CVE-2013-1416, 950342 Tenable has extracted the...
[ MDVSA-2013:157 ] krb5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:157 http://www.mandriva.com/en/support/security/ Package : krb5 Date : April 30, 2013 Affected: Enterprise Server 5.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in krb5:...
CVE-2013-1416
The prepreprocessreq function in dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service NULL pointer dereference and daemon crash via a...
CVE-2013-1416
CVE-2013-1416 affects MIT Kerberos 5 (krb5) KDC prior to 1.10.5. The prep_reprocess_req function in do_tgs_req.c does not correctly perform service-principal realm referral, enabling a remote authenticated user to trigger a denial of service via a crafted TGS-REQ, causing a NULL pointer dereferen...
RedHat Update for krb5 RHSA-2013:0748-01
Check for the Version of krb5 OpenVAS Vulnerability Test RedHat Update for krb5 RHSA-2013:0748-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
Fedora Update for krb5 FEDORA-2013-5280
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for krb5 RHSA-2013:0748-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected", value:"krb...
Fedora Update for krb5 FEDORA-2013-5286
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected", value:"krb...
CentOS 6 : krb5 (CESA-2013:0748)
Updated krb5 packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Medium: krb5
Issue Overview: A NULL pointer dereference flaw was found in the way the MIT Kerberos KDC processed certain TGS Ticket-granting Server requests. A remote, authenticated attacker could use this flaw to crash the KDC via a specially-crafted TGS request. CVE-2013-1416 Affected Packages: krb5 Issue...
Scientific Linux Security Update : krb5 on SL6.x i386/x86_64 (20130416)
A NULL pointer dereference flaw was found in the way the MIT Kerberos KDC processed certain TGS Ticket-granting Server requests. A remote, authenticated attacker could use this flaw to crash the KDC via a specially crafted TGS request. CVE-2013-1416 After installing the updated packages, the...
krb5 security update
1.10.3-10.2 - incorporate upstream patch to fix a NULL pointer dereference while processing certain TGS requests CVE-2013-1416, 950342...