Описание
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.16-2ubuntu0.2 |
| devel | released | 1.17-10ubuntu1 |
| esm-infra-legacy/trusty | released | 1.12+dfsg-2ubuntu5.4+esm2 |
| esm-infra/bionic | released | 1.16-2ubuntu0.2 |
| esm-infra/focal | released | 1.17-6ubuntu4.1 |
| esm-infra/xenial | released | 1.13.2+dfsg-5ubuntu2.2 |
| focal | released | 1.17-6ubuntu4.1 |
| groovy | released | 1.17-10ubuntu0.1 |
| precise/esm | not-affected | |
| trusty | ignored | end of standard support |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allow ...
EPSS
5 Medium
CVSS2
7.5 High
CVSS3