Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2011:1169-1
HistoryOct 24, 2011 - 2:08 p.m.

krb5: fixed kdc remote denial of service ( CVE-2011-1528, CVE-2011-1529) and unauthorized file access (CVE-2011-1526) (important)

2011-10-2414:08:23
lists.opensuse.org
10

0.738 High

EPSS

Percentile

97.8%

JSON

The following issues have been fixed:

  • CVE-2011-1528: In releases krb5-1.8 and later, the KDC
    can crash due to an assertion failure.
  • CVE-2011-1529: In releases krb5-1.8 and later, the KDC
    can crash due to a null pointer dereference.

Both bugs could be triggered by unauthenticated remote
attackers. Additionally CVE-2011-1526 was fixed that
allowed authenticated users to access files via krb5 ftpd
they should not have access to.

OSVersionArchitecturePackageVersionFilename
openSUSE11.3x86_64krb5-client< 1.8.1-5.11.1krb5-client-1.8.1-5.11.1.x86_64.rpm
openSUSE11.4x86_64krb5-plugin-kdb-ldap< 1.8.3-16.19.1krb5-plugin-kdb-ldap-1.8.3-16.19.1.x86_64.rpm
openSUSE11.4x86_64krb5-devel< 1.8.3-16.19.1krb5-devel-1.8.3-16.19.1.x86_64.rpm
openSUSE11.3x86_64krb5-32bit< 1.8.1-5.11.1krb5-32bit-1.8.1-5.11.1.x86_64.rpm
openSUSE11.3i586krb5-plugin-kdb-ldap< 1.8.1-5.11.1krb5-plugin-kdb-ldap-1.8.1-5.11.1.i586.rpm
openSUSE11.3x86_64krb5< 1.8.1-5.11.1krb5-1.8.1-5.11.1.x86_64.rpm
openSUSE11.4x86_64krb5-appl-clients< 1.0-7.10.1krb5-appl-clients-1.0-7.10.1.x86_64.rpm
openSUSE11.3x86_64krb5-server< 1.8.1-5.11.1krb5-server-1.8.1-5.11.1.x86_64.rpm
openSUSE11.4x86_64krb5-devel-32bit< 1.8.3-16.19.1krb5-devel-32bit-1.8.3-16.19.1.x86_64.rpm
openSUSE11.3i586krb5-server< 1.8.1-5.11.1krb5-server-1.8.1-5.11.1.i586.rpm
Rows per page:
1-10 of 361

Related

nessus 30
securityvulns 3
debian 2
openvas 44
osv 1
redhat 4
amazon 1
oraclelinux 3
ubuntu 1
cert 1
veracode 3
altlinux 3
ubuntucve 4
fedora 7
cve 4
prion 4
debiancve 3
suse 6
gentoo 2
nessus
nessus
openSUSE Security Update : krb5 (openSUSE-SU-2011:1169-1)
2014-06-13 00:00:00
openSUSE Security Update : krb5 (openSUSE-SU-2011:1169-1)
2014-06-13 00:00:00
Debian DSA-2379-1 : krb5 - several vulnerabilities
2012-01-12 00:00:00
securityvulns
securityvulns
MIT krb5 FTP server privilege escalation
2011-10-24 00:00:00
MITKRB5-SA-2011-006 KDC denial of service vulnerabilities [CVE-2011-1527 CVE-2011-1528 CVE-2011-1529]
2011-10-24 00:00:00
MITKRB5-SA-2011-005 FTP daemon fails to set effective group ID [CVE-2011-1526]
2011-07-11 00:00:00
debian
debian
[SECURITY] [DSA 2379-1] krb5 security update
2012-01-04 19:04:11
[SECURITY] [DSA 2283-1] krb5-appl security update
2011-07-25 11:53:06
openvas
openvas
Debian: Security Advisory (DSA-2379-1)
2012-02-11 00:00:00
Debian Security Advisory DSA 2379-1 (krb5)
2012-02-11 00:00:00
Mandriva Update for krb5 MDVSA-2011:160 (krb5)
2011-10-31 00:00:00
osv
osv
krb5 - several
2012-01-04 00:00:00
redhat
redhat
(RHSA-2011:1379) Moderate: krb5 security update
2011-10-18 00:00:00
(RHSA-2011:0920) Important: krb5-appl security update
2011-07-05 00:00:00
(RHSA-2012:0306) Low: krb5 security and bug fix update
2012-02-21 00:00:00
amazon
amazon
Medium: krb5
2011-10-31 18:26:00
oraclelinux
oraclelinux
krb5 security update
2011-10-18 00:00:00
krb5-appl security update
2011-07-05 00:00:00
krb5 security and bug fix update
2012-03-01 00:00:00
ubuntu
ubuntu
Kerberos Vulnerabilities
2011-10-18 00:00:00
cert
cert
Multiple MIT KRB5 KDC daemon vulnerabilities
2011-10-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:05:59
Privilege Escalation
2020-04-10 01:05:25
Denial Of Service (DoS)
2020-04-10 01:05:59
altlinux
altlinux
Security fix for the ALT Linux 7 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
Security fix for the ALT Linux 8 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
Security fix for the ALT Linux 9 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
ubuntucve
ubuntucve
CVE-2011-1526
2011-07-11 00:00:00
CVE-2011-1529
2011-10-18 00:00:00
CVE-2011-1528
2011-10-18 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-7.fc15
2011-07-15 01:22:19
[SECURITY] Fedora 14 Update: krb5-appl-1.0.1-4.fc14
2011-07-15 01:26:36
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-8.fc15
2012-01-05 20:57:26
cve
cve
CVE-2011-1526
2011-07-11 20:55:00
CVE-2011-1529
2011-10-20 21:55:00
CVE-2011-1528
2011-10-20 21:55:00
prion
prion
Design/Logic Flaw
2011-07-11 20:55:00
Null pointer dereference
2011-10-20 21:55:00
Design/Logic Flaw
2011-10-20 21:55:00
debiancve
debiancve
CVE-2011-1529
2011-10-20 21:55:00
CVE-2011-4151
2011-10-20 21:55:00
CVE-2011-1528
2011-10-20 21:55:00
suse
suse
krb5-appl: Fixed remote buffer overflow in ktelnetd (important)
2012-01-05 12:08:43
Security update for Kerberos 5 (important)
2012-01-05 12:08:41
Security update for Kerberos 5 (important)
2012-01-05 12:36:16
gentoo
gentoo
MIT Kerberos 5 Applications: Multiple vulnerabilities
2012-01-23 00:00:00
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00

0.738 High

EPSS

Percentile

97.8%

JSON
Related for OPENSUSE-SU-2011:1169-1
nessus30securityvulns3debian2openvas44osv1redhat4amazon1oraclelinux3ubuntu1cert1veracode3altlinux3ubuntucve4fedora7cve4prion4debiancve3suse6gentoo2