Lucene search
Gentoo FoundationMGASA-2013-0335HistoryNov 21, 2013 - 12:38 a.m.
Updated krb5 package fixes security vulnerabily
2013-11-2100:38:57
Gentoo Foundation
advisories.mageia.org
20
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.936
Percentile
99.1%
If a KDC serves multiple realms, certain requests can cause setup_server_realm() to dereference a null pointer, crashing the KDC. This can be triggered by an unauthenticated user (CVE-2013-1418).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 2 | noarch | krb5 | < 1.9.2-2.7 | krb5-1.9.2-2.7.mga2 |
Related
checkpoint_advisories
checkpoint_advisories
nessus
nessus
MIT Kerberos 5 setup_server_realm() Remote DoS
2013-11-18 00:00:00
Mandriva Linux Security Advisory : krb5 (MDVSA-2013:275)
2013-11-22 00:00:00
openSUSE Security Update : krb5 (openSUSE-SU-2013:1738-1)
2014-06-13 00:00:00
f5
f5
K15784 : Kerberos vulnerability CVE-2013-1418
2014-11-03 00:00:00
K15785 : Kerberos vulnerability CVE-2013-6800
2014-11-03 00:00:00
SOL15784 - Kerberos vulnerability CVE-2013-1418
2014-11-03 00:00:00
securityvulns
securityvulns
MIT Kerberos 5 KDC DoS
2013-11-26 00:00:00
[ MDVSA-2013:275 ] krb5
2013-11-26 00:00:00
cvelist
cvelist
CVE-2013-1418
2013-11-16 02:00:00
CVE-2013-6800
2013-11-16 11:00:00
prion
prion
Null pointer dereference
2013-11-18 03:55:00
Null pointer dereference
2013-11-18 02:55:00
ubuntucve
ubuntucve
CVE-2013-1418
2013-11-17 00:00:00
CVE-2013-6800
2013-11-17 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0335)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:1875-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2013-0336)
2022-01-28 00:00:00
debiancve
debiancve
CVE-2013-1418
2013-11-18 03:55:05
cve
cve
CVE-2013-1418
2013-11-18 03:55:05
CVE-2013-6800
2013-11-18 02:55:10
veracode
veracode
Denial Of Service
2019-01-15 09:01:24
Denial Of Service (DoS)
2019-05-02 05:04:04
Denial Of Service (DoS)
2019-05-02 05:04:04
fedora
fedora
[SECURITY] Fedora 20 Update: krb5-1.11.3-29.fc20
2013-11-12 00:28:19
[SECURITY] Fedora 19 Update: krb5-1.11.3-13.fc19
2013-12-03 10:37:37
[SECURITY] Fedora 20 Update: krb5-1.11.5-10.fc20
2014-08-07 15:32:53
nvd
nvd
CVE-2013-1418
2013-11-18 03:55:05
CVE-2013-6800
2013-11-18 02:55:10
mageia
mageia
Updated krb5 package fixes security vulnerabilities
2013-11-21 00:41:07
ibm
ibm
centos
centos
krb5 security update
2014-09-30 11:21:52
krb5 security update
2014-10-20 18:09:24
redhat
redhat
(RHSA-2014:1245) Moderate: krb5 security and bug fix update
2014-09-16 00:00:00
(RHSA-2014:1389) Moderate: krb5 security and bug fix update
2014-10-14 00:00:00
oraclelinux
oraclelinux
krb5 security and bug fix update
2014-09-17 00:00:00
krb5 security and bug fix update
2014-10-15 00:00:00
krb5 security, bug fix and enhancement update
2015-03-11 00:00:00
debian
debian
[SECURITY] [DLA 1265-1] krb5 security update
2018-01-31 17:06:34
osv
osv
krb5 - security update
2018-01-31 00:00:00
amazon
amazon
Medium: krb5
2014-11-11 10:25:00
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2013-12-16 00:00:00
ubuntu
ubuntu
Kerberos vulnerabilities
2014-08-11 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.936
Percentile
99.1%
Related for MGASA-2013-0335