Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 200507-11 ] MIT Kerberos 5: Multiple vulnerabilities
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2663

PostPosted: Tue Jul 12, 2005 7:30 pm    Post subject: [ GLSA 200507-11 ] MIT Kerberos 5: Multiple vulnerabilities Reply with quote

Gentoo Linux Security Advisory

Title: MIT Kerberos 5: Multiple vulnerabilities (GLSA 200507-11)
Severity: high
Exploitable: remote
Date: July 12, 2005
Bug(s): #98799
ID: 200507-11

Synopsis


MIT Kerberos 5 is vulnerable to a Denial of Service attack and remote
execution of arbitrary code, possibly leading to the compromise of the
entire Kerberos realm.


Background


MIT Kerberos 5 is the free implementation of the Kerberos network
authentication protocol by the Massachusetts Institute of Technology.


Affected Packages

Package: app-crypt/mit-krb5
Vulnerable: < 1.4.1-r1
Unaffected: >= 1.4.1-r1
Architectures: All supported architectures


Description


Daniel Wachdorf discovered that MIT Kerberos 5 could corrupt the
heap by freeing unallocated memory when receiving a special TCP request
(CAN-2005-1174). He also discovered that the same request could lead to
a single-byte heap overflow (CAN-2005-1175). Magnus Hagander discovered
that krb5_recvauth() function of MIT Kerberos 5 might try to
double-free memory (CAN-2005-1689).


Impact


Although exploitation is considered difficult, a remote attacker
could exploit the single-byte heap overflow and the double-free
vulnerability to execute arbitrary code, which could lead to the
compromise of the whole Kerberos realm. A remote attacker could also
use the heap corruption to cause a Denial of Service.


Workaround


There are no known workarounds at this time.


Resolution


All MIT Kerberos 5 users should upgrade to the latest available
version:
Code:
# emerge --sync
    # emerge --ask --oneshot --verbose ">=app-crypt/mit-krb5-1.4.1-r1"


References

CAN-2005-1174
CAN-2005-1175
CAN-2005-1689
MITKRB5-SA-2005-002
MITKRB5-SA-2005-003


Last edited by GLSA on Mon Mar 03, 2014 4:20 am; edited 3 times in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum