blob: f4064d36520944e87a0ffda048d66b4ceb83f9f6 [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200409-09">
<title>MIT krb5: Multiple vulnerabilities</title>
MIT krb5 contains several double-free vulnerabilities, potentially allowing
the execution of arbitrary code, as well as a denial of service
<product type="ebuild">mit-krb5</product>
<announced>September 06, 2004</announced>
<revised>September 06, 2004: 01</revised>
<package name="app-crypt/mit-krb5" auto="yes" arch="*">
<unaffected range="ge">1.3.4</unaffected>
<vulnerable range="lt">1.3.4</vulnerable>
MIT krb5 is the free implementation of the Kerberos network authentication
protocol by the Massachusetts Institute of Technology.
The implementation of the Key Distribution Center (KDC) and the MIT krb5
library contain double-free vulnerabilities, making client programs as well
as application servers vulnerable.
The ASN.1 decoder library is vulnerable to a denial of service attack,
including the KDC.
<impact type="high">
The double-free vulnerabilities could allow an attacker to execute
arbitrary code on a KDC host and hosts running krb524d or vulnerable
services. In the case of a KDC host, this can lead to a compromise of the
entire Kerberos realm. Furthermore, an attacker impersonating a legitimate
KDC or application server can potentially execute arbitrary code on
authenticating clients.
An attacker can cause a denial of service for a KDC or application server
and clients, the latter if impersonating a legitimate KDC or application
There is no known workaround at this time.
All mit-krb5 users should upgrade to the latest stable version:
# emerge sync
# emerge -pv ">=app-crypt/mit-krb5-1.3.4"
# emerge ">=app-crypt/mit-krb5-1.3.4"</code>
<uri link="">MIT krb5 Security Advisory 2004-002</uri>
<uri link="">MIT krb5 Security Advisory 2004-003</uri>
<uri link="">CAN-2004-0642</uri>
<uri link="">CAN-2004-0643</uri>
<uri link="">CAN-2004-0644</uri>
<uri link="">CAN-2004-0772</uri>
<metadata tag="requester" timestamp="Fri, 3 Sep 2004 20:07:22 +0000">
<metadata tag="submitter" timestamp="Sat, 4 Sep 2004 16:18:26 +0000">