Описание
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger certain process_as_req errors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.9.1+dfsg-1ubuntu2.1 |
| hardy | not-affected | |
| lucid | released | 1.8.1+dfsg-2ubuntu0.10 |
| maverick | released | 1.8.1+dfsg-5ubuntu0.8 |
| natty | released | 1.8.3+dfsg-5ubuntu2.2 |
| oneiric | released | 1.9.1+dfsg-1ubuntu1.1 |
| upstream | needs-triage |
Показывать по
EPSS
7.8 High
CVSS2
Связанные уязвимости
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger certain process_as_req errors.
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger certain process_as_req errors.
The lookup_lockout_policy function in the Key Distribution Center (KDC ...
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger certain process_as_req errors.
EPSS
7.8 High
CVSS2