Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2022:8638

Опубликовано: 28 нояб. 2022
Источник: rocky
Оценка: Important

Описание

Important: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).

Security Fix(es):

  • krb5: integer overflow vulnerabilities in PAC parsing (CVE-2022-42898)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
krb5-develx86_6422.el8_7krb5-devel-1.18.2-22.el8_7.x86_64.rpm
krb5-libsx86_6422.el8_7krb5-libs-1.18.2-22.el8_7.x86_64.rpm
krb5-pkinitx86_6422.el8_7krb5-pkinit-1.18.2-22.el8_7.x86_64.rpm
krb5-serverx86_6422.el8_7krb5-server-1.18.2-22.el8_7.x86_64.rpm
krb5-server-ldapx86_6422.el8_7krb5-server-ldap-1.18.2-22.el8_7.x86_64.rpm
krb5-workstationx86_6422.el8_7krb5-workstation-1.18.2-22.el8_7.x86_64.rpm
libkadm5x86_6422.el8_7libkadm5-1.18.2-22.el8_7.x86_64.rpm

Показывать по

Связанные CVE

CVE-2022-42898

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2022-42898

CVSS3: 8.8
ubuntu
больше 2 лет назад

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

redhat логотип

CVE-2022-42898

CVSS3: 8.8
redhat
больше 2 лет назад

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

nvd логотип

CVE-2022-42898

CVSS3: 8.8
nvd
больше 2 лет назад

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

msrc логотип

CVE-2022-42898

CVSS3: 8.8
msrc
8 месяцев назад

Описание отсутствует

debian логотип

CVE-2022-42898

CVSS3: 8.8
debian
больше 2 лет назад

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x befo ...