Oracle Linux 8 : gssntlmssp (ELSA-2023-3097)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-3097 advisory. - Fix CVE-2023-25563: multiple out-of-bounds read when decoding NTLM fields - Fix CVE-2023-25564: memory corruption when decoding UTF16 strings - Fix...

CVE-2023-25566

A flaw was found in GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication. A memory leak can be triggered when parsing usernames, triggering a denial of service. The domain portion of a username may be overridden, causing an allocated memory area the size of th...

CVE-2023-25565

A flaw was found in GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication. An incorrect free when decoding target information can trigger a denial of service. The error condition incorrectly assumes the cb and sh buffers contain a copy of the data that needs to...

SUSE CVE-2006-6144

The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...

CVE-2023-25567

GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication, has an out-of-bounds read when decoding target information prior to version 1.2.0. The length of the avpair is not checked properly for two of the elements which can trigger an out-of-bound read. The...

Out-of-bounds

GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication, has an out-of-bounds read when decoding target information prior to version 1.2.0. The length of the avpair is not checked properly for two of the elements which can trigger an out-of-bound read. The...

CVE-2023-25567 GSS-NTLMSSP vulnerable to out-of-bounds read when decoding target information

GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication, has an out-of-bounds read when decoding target information prior to version 1.2.0. The length of the avpair is not checked properly for two of the elements which can trigger an out-of-bound read. The...

CVE-2023-25567

CVE-2023-25567 affects the GSS-NTLMSSP mechglue in the GSSAPI library, producing an out-of-bounds read when decoding NTLM target information. The CVE is triggered via gss_accept_sec_context and could cause a denial of service if memory is unmapped. Publicly documented impact and remediation in th...

CVE-2023-25566

CVE-2023-25566 affects the GSS-NTLMSSP mechglue plugin for the GSSAPI library, used for NTLM authentication. The issue is a memory leak triggered when parsing usernames, where the domain portion of the username can be overridden, leaking an allocated memory area the size of the domain name via th...

CVE-2023-25565

GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to version 1.2.0, an incorrect free when decoding target information can trigger a denial of service. The error condition incorrectly assumes the cb and sh buffers contain a copy of the data that...

CVE-2023-25564

The CVE-2023-25564 issue affects GSS-NTLMSSP (NTLM support for GSSAPI). Before version 1.2.0, decoding UTF-16 strings could leave outlen uninitialized, causing a potential out-of-bounds write and memory corruption that may trigger a denial of service via gss_accept_sec_context. The advisory state...

CVE-2023-25563

CVE-2023-25563 affects the GSS-NTLMSSP mechglue for the GSSAPI library. The vulnerability arises from multiple out-of-bounds reads when decoding NTLM fields and a 32-bit integer overflow that can cause improper length checks of internal buffers. If an application accepts NTLM tokens longer than 4...

CVE-2023-25567

GSS-NTLMSSP, a mechglue plugin for the GSSAPI library that implements NTLM authentication, has an out-of-bounds read when decoding target information prior to version 1.2.0. The length of the avpair is not checked properly for two of the elements which can trigger an out-of-bound read. The...

CVE-2023-25565

GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to version 1.2.0, an incorrect free when decoding target information can trigger a denial of service. The error condition incorrectly assumes the cb and sh buffers contain a copy of the data that...

Fedora 23 : krb5-1.14.1-3.fc23 (2016-56840babc3)

CVE-2016-3119, NULL dereference in LDAP module. ---- Fix an issue with return codes on gssinquireattrsformech. This resolves an issue with gss-ntlmssp, and anything else that is interposing but not implementing the corresponding mechglue function. Note that Tenable Network Security has extracted...

CVE-2007-5901

Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...

SUSE-SA:2007:004: krb5

The remote host is missing the patch for the advisory SUSE-SA:2007:004 krb5. Various bugs in the Kerberos5 libraries and tools were fixed which could be used by remote attackers to crash and potentially execute code in kadmind. - CVE-2006-6144 / MITKRB5-SA-2006-002: the RPC library could call an...

CVE-2006-6144

The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...

GSS-API library / MIT Kerberos kadmind (uninitialized pointer free)

free of unallocated memory pointer in mechglue GSS API layer...

CVE-2006-6144

The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...