CVE-2014-9423medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
The svcauth_gss_accept_sec_context function in lib/rpc/svc_auth_gss.c in MIT Kerberos 5 (aka krb5) 1.11.x through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 transmits uninitialized interposer data to clients, which allows remote attackers to obtain sensitive information from process heap memory by sniffing the network for data in a handle field.
References
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/151103.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/151437.html
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00016.html
http://lists.opensuse.org/opensuse-updates/2015-02/msg00044.html
http://rhn.redhat.com/errata/RHSA-2015-0439.html
http://web.mit.edu/kerberos/advisories/2015-001-patch-r113.txt
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2015-001.txt
http://www.debian.org/security/2015/dsa-3153
http://www.mandriva.com/security/advisories?name=MDVSA-2015:069
http://www.securityfocus.com/bid/72503
http://www.ubuntu.com/usn/USN-2498-1
https://github.com/krb5/krb5/commit/5bb8a6b9c9eb8dd22bc9526751610aaa255ead9c
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:mit:kerberos_5:1.11:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.11.1:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.11.2:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.11.3:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.11.4:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.11.5:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.12:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.12.1:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 83874 | AIX NAS Advisory : nas_advisory3.asc | Nessus | AIX Local Security Checks | high |
| 83683 | SUSE SLED12 / SLES12 Security Update : krb5 (SUSE-SU-2015:0290-2) | Nessus | SuSE Local Security Checks | high |
| 83682 | SUSE SLES12 Security Update : krb5 (SUSE-SU-2015:0290-1) | Nessus | SuSE Local Security Checks | high |
| 82322 | Mandriva Linux Security Advisory : krb5 (MDVSA-2015:069) | Nessus | Mandriva Local Security Checks | high |
| 82255 | Scientific Linux Security Update : krb5 on SL7.x x86_64 (20150305) | Nessus | Scientific Linux Local Security Checks | high |
| 82129 | Debian DLA-146-1 : krb5 security update | Nessus | Debian Local Security Checks | high |
| 81896 | CentOS 7 : krb5 (CESA-2015:0439) | Nessus | CentOS Local Security Checks | high |
| 81805 | Oracle Linux 7 : krb5 (ELSA-2015-0439) | Nessus | Oracle Linux Local Security Checks | high |
| 81796 | Fedora 21 : krb5-1.12.2-14.fc21 (2015-2347) | Nessus | Fedora Local Security Checks | high |
| 81705 | Fedora 20 : krb5-1.11.5-18.fc20 (2015-2382) | Nessus | Fedora Local Security Checks | high |
| 81637 | RHEL 7 : krb5 (RHSA-2015:0439) | Nessus | Red Hat Local Security Checks | high |
| 81312 | SuSE 11.3 Security Update : krb5 (SAT Patch Number 10282) | Nessus | SuSE Local Security Checks | high |
| 81304 | openSUSE Security Update : krb5 (openSUSE-2015-128) | Nessus | SuSE Local Security Checks | high |
| 81297 | Ubuntu 10.04 LTS / 12.04 LTS / 14.04 LTS / 14.10 : krb5 vulnerabilities (USN-2498-1) | Nessus | Ubuntu Local Security Checks | high |
| 81175 | FreeBSD : krb5 -- Vulnerabilities in kadmind, libgssrpc, gss_process_context_token VU#540092 (24ce5597-acab-11e4-a847-206a8a720317) | Nessus | FreeBSD Local Security Checks | high |
| 81150 | Debian DSA-3153-1 : krb5 - security update | Nessus | Debian Local Security Checks | high |