Lucene search
SuseSUSE-SA:2007:004HistoryJan 10, 2007 - 12:52 p.m.
remote denial of service in krb5
2007-01-1012:52:57
lists.opensuse.org
11
0.531 Medium
EPSS
Percentile
97.3%
Various bugs in the Kerberos5 libraries and tools were fixed which could be used by remote attackers to crash and potentially execute code in kadmind.
Solution
There is no known workaround, please install the update packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| SUSE Linux Enterprise Server | 10 | ia64 | krb5 | < 1.4.3-19.7 | krb5-1.4.3-19.7.ia64.rpm |
| SUSE Linux Enterprise Server | 10 | s390x | krb5-server | < 1.4.3-19.7 | krb5-server-1.4.3-19.7.s390x.rpm |
| openSUSE | 10.1 | ppc | krb5 | < 1.4.3-19.7 | krb5-1.4.3-19.7.ppc.rpm |
| openSUSE | 10.1 | i586 | krb5-server | < 1.4.3-19.7 | krb5-server-1.4.3-19.7.i586.rpm |
| SUSE Linux Enterprise Server | 10 | i586 | krb5 | < 1.4.3-19.7 | krb5-1.4.3-19.7.i586.rpm |
| openSUSE | 9.3 | x86_64 | krb5-32bit | < 9.3-7.2 | krb5-32bit-9.3-7.2.x86_64.rpm |
| openSUSE | 10.1 | x86_64 | krb5-server | < 1.4.3-19.7 | krb5-server-1.4.3-19.7.x86_64.rpm |
| SUSE Linux Enterprise Server | 10 | s390x | krb5 | < 1.4.3-19.7 | krb5-1.4.3-19.7.s390x.rpm |
| openSUSE | 9.3 | i586 | krb5-server | < 1.4-16.7 | krb5-server-1.4-16.7.i586.rpm |
| openSUSE | 10.0 | i586 | krb5-server | < 1.4.1-5.3 | krb5-server-1.4.1-5.3.i586.rpm |
Related
nessus
nessus
SUSE-SA:2007:004: krb5
2007-02-18 00:00:00
openSUSE 10 Security Update : krb5 (krb5-2442)
2007-10-17 00:00:00
GLSA-200701-21 : MIT Kerberos 5: Arbitrary Remote Code Execution
2007-01-26 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200701-21 (mit-krb5)
2008-09-24 00:00:00
SuSE Update for krb5 SUSE-SA:2007:004
2009-01-28 00:00:00
Gentoo Security Advisory GLSA 200701-21 (mit-krb5)
2008-09-24 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: krb5-1.5-13
2007-01-09 22:08:27
[SECURITY] Fedora Core 5 Update: krb5-1.4.3-5.3
2007-01-09 22:09:07
[SECURITY] Fedora Core 5 Update: krb5-1.4.3-5.4
2007-04-03 20:14:48
gentoo
gentoo
MIT Kerberos 5: Arbitrary Remote Code Execution
2007-01-24 00:00:00
ubuntu
ubuntu
krb5 vulnerability
2007-01-16 00:00:00
cve
cve
CVE-2006-6144
2006-12-31 05:00:00
CVE-2006-6143
2006-12-31 05:00:00
cert
cert
Kerberos administration daemon may free uninitialized pointers
2007-01-09 00:00:00
securityvulns
securityvulns
MITKRB5-SA-2006-003: kadmind (via GSS-API lib) frees uninitialized pointers
2007-01-09 00:00:00
GSS-API library / MIT Kerberos kadmind (uninitialized pointer free)
2007-01-09 00:00:00
RPC library / MIT Kerberos kadmind uninitialized function pointer
2007-01-09 00:00:00
ubuntucve
ubuntucve
CVE-2006-6144
2006-12-31 00:00:00
CVE-2006-6143
2006-12-31 00:00:00
debiancve
debiancve
CVE-2006-6143
2006-12-31 05:00:00
CVE-2006-6144
2006-12-31 05:00:00