Lucene search
Ubuntu.comUB:CVE-2014-4342HistoryJul 20, 2014 - 12:00 a.m.
CVE-2014-4342
2014-07-2000:00:00
ubuntu.com
ubuntu.com
10
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.277 Low
EPSS
Percentile
96.8%
MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote
attackers to cause a denial of service (buffer over-read or NULL pointer
dereference, and application crash) by injecting invalid tokens into a
GSSAPI application session.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | same patch as CVE-2014-4341 |
Related
nessus
nessus
Oracle Solaris Third-Party Patch Update : kerberos (multiple_buffer_errors_vulnerabilities_in4)
2015-01-19 00:00:00
Mandriva Linux Security Advisory : krb5 (MDVSA-2014:165)
2014-09-12 00:00:00
openSUSE Security Update : krb5 (openSUSE-SU-2014:0977-1)
2014-08-12 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0989-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-37-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3000-1)
2014-08-08 00:00:00
f5
f5
K15552 : MIT Kerberos 5 vulnerability CVE-2014-4341
2015-11-10 00:00:00
SOL15552 - MIT Kerberos 5 vulnerability CVE-2014-4341
2014-09-04 00:00:00
K15547 : MIT Kerberos 5 vulnerability CVE-2014-4342
2015-09-01 00:00:00
debian
debian
[SECURITY] [DSA 3000-1] krb5 security update
2014-08-09 14:54:58
[DLA 37-1] krb5 security update
2014-08-18 17:46:47
[SECURITY] [DSA 3000-1] krb5 security update
2014-08-09 14:55:17
osv
osv
krb5 - security update
2014-08-18 00:00:00
krb5 - security update
2014-08-09 00:00:00
debiancve
debiancve
CVE-2014-4341
2014-07-20 11:12:00
CVE-2014-4342
2014-07-20 11:12:00
prion
prion
Design/Logic Flaw
2014-07-20 11:12:00
Null pointer dereference
2014-07-20 11:12:00
ubuntucve
ubuntucve
CVE-2014-4341
2014-07-20 00:00:00
mageia
mageia
Updated krb5 package fixes security vulnerabilities
2014-08-22 14:58:14
cve
cve
CVE-2014-4341
2014-07-20 11:12:00
CVE-2014-4342
2014-07-20 11:12:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:12:23
Denial Of Service (DoS)
2019-05-02 05:04:04
Denial Of Service (DoS)
2019-05-02 05:04:04
checkpoint_advisories
checkpoint_advisories
MIT Kerberos Invalid RFC 1964 Token Denial of Service (CVE-2014-4342)
2014-09-23 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: krb5-1.11.5-10.fc20
2014-08-07 15:32:53
[SECURITY] Fedora 19 Update: krb5-1.11.3-24.fc19
2014-08-07 15:27:20
[SECURITY] Fedora 20 Update: krb5-1.11.5-11.fc20
2014-08-15 02:45:53
amazon
amazon
Medium: krb5
2014-11-11 10:25:00
redhat
redhat
(RHSA-2014:1389) Moderate: krb5 security and bug fix update
2014-10-14 00:00:00
(RHSA-2015:0439) Moderate: krb5 security, bug fix and enhancement update
2015-03-05 00:00:00
(RHSA-2014:1245) Moderate: krb5 security and bug fix update
2014-09-16 00:00:00
oraclelinux
oraclelinux
krb5 security and bug fix update
2014-10-15 00:00:00
krb5 security and bug fix update
2014-09-17 00:00:00
krb5 security, bug fix and enhancement update
2015-03-11 00:00:00
centos
centos
krb5 security update
2014-10-20 18:09:24
krb5 security update
2015-03-17 13:28:30
krb5 security update
2014-09-30 11:21:52
aix
aix
Multiple Security vulnerabilities in IBM NAS
2014-08-28 03:15:00
ubuntu
ubuntu
Kerberos vulnerabilities
2014-08-11 00:00:00
gentoo
gentoo
MIT Kerberos 5: User-assisted execution of arbitrary code
2014-12-31 00:00:00
freebsd
freebsd
krb5 1.11 -- New release/fix multiple vulnerabilities
2015-02-25 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.277 Low
EPSS
Percentile
96.8%
Related for UB:CVE-2014-4342