CVE-2011-1528

2011-10-1800:00:00

ubuntu.com

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.147 Low

EPSS

Percentile

95.7%

JSON

The krb5_ldap_lockout_audit function in the Key Distribution Center (KDC)
in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when
the LDAP back end is used, allows remote attackers to cause a denial of
service (assertion failure and daemon exit) via unspecified vectors,
related to the locked_check_p function. NOTE: the Berkeley DB vector is
covered by CVE-2011-4151.

Bugs

<https://bugs.launchpad.net/ubuntu/+source/krb5/+bug/715579>

Notes

Author	Note
sbeattie	CRD Tuesday, 18 October 2011, at 14:00 US/Eastern time 1.8 and 1.9 only

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchkrb5< 1.8.1+dfsg-2ubuntu0.10UNKNOWN
ubuntu10.10noarchkrb5< 1.8.1+dfsg-5ubuntu0.8UNKNOWN
ubuntu11.04noarchkrb5< 1.8.3+dfsg-5ubuntu2.2UNKNOWN
ubuntu11.10noarchkrb5< 1.9.1+dfsg-1ubuntu1.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	krb5	< 1.8.1+dfsg-2ubuntu0.10	UNKNOWN
ubuntu	10.10	noarch	krb5	< 1.8.1+dfsg-5ubuntu0.8	UNKNOWN
ubuntu	11.04	noarch	krb5	< 1.8.3+dfsg-5ubuntu2.2	UNKNOWN
ubuntu	11.10	noarch	krb5	< 1.9.1+dfsg-1ubuntu1.1	UNKNOWN