Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0628HistoryMar 25, 2010 - 10:30 p.m.
CVE-2010-0628
2010-03-2522:30:00
Debian Security Bug Tracker
security-tracker.debian.org
15
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.15
Percentile
95.8%
The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in the SPNEGO GSS-API functionality in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.2 and 1.8 before 1.8.1 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via an invalid packet that triggers incorrect preparation of an error token.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | krb5 | < 1.8+dfsg-1.1 | krb5_1.8+dfsg-1.1_all.deb |
| Debian | 11 | all | krb5 | < 1.8+dfsg-1.1 | krb5_1.8+dfsg-1.1_all.deb |
| Debian | 999 | all | krb5 | < 1.8+dfsg-1.1 | krb5_1.8+dfsg-1.1_all.deb |
| Debian | 13 | all | krb5 | < 1.8+dfsg-1.1 | krb5_1.8+dfsg-1.1_all.deb |
Related
nessus
nessus
openSUSE Security Update : krb5 (krb5-2188)
2010-03-26 00:00:00
Fedora 12 : krb5-1.7.1-6.fc12 (2010-4677)
2010-07-01 00:00:00
Fedora 13 : krb5-1.7.1-7.fc13 (2010-4608)
2010-07-01 00:00:00
cve
cve
CVE-2010-0628
2010-03-25 22:30:00
cvelist
cvelist
CVE-2010-0628
2010-03-25 22:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: krb5-1.7.1-7.fc13
2010-04-01 17:19:30
[SECURITY] Fedora 12 Update: krb5-1.7.1-6.fc12
2010-03-27 00:55:38
[SECURITY] Fedora 12 Update: krb5-1.7.1-7.fc12
2010-04-21 21:58:12
securityvulns
securityvulns
MIT Kerberos DoS
2010-03-25 00:00:00
MITKRB5-SA-2010-002 denial of service in SPNEGO [CVE-2010-0628 VU#839413]
2010-03-25 00:00:00
ubuntucve
ubuntucve
CVE-2010-0628
2010-03-24 00:00:00
prion
prion
Design/Logic Flaw
2010-03-25 22:30:00
nvd
nvd
CVE-2010-0628
2010-03-25 22:30:00
openvas
openvas
Ubuntu Update for krb5 vulnerabilities USN-916-1
2010-03-31 00:00:00
Ubuntu: Security Advisory (USN-916-1)
2010-03-31 00:00:00
FreeBSD Ports: krb5
2010-04-21 00:00:00
ubuntu
ubuntu
Kerberos vulnerabilities
2010-03-23 00:00:00
freebsd
freebsd
krb5 -- multiple denial of service vulnerabilities
2010-02-16 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.15
Percentile
95.8%
Related for DEBIANCVE:CVE-2010-0628