csaf_redhat - rhsa-2011

rhsa-2011_0199

Vulnerability from csaf_redhat

Published

2011-02-08 21:39

Modified

2024-11-22 04:06

Summary

Red Hat Security Advisory: krb5 security update

Notes

Topic

Updated krb5 packages that fix two security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details

Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third-party, the Key Distribution Center (KDC). A NULL pointer dereference flaw was found in the way the MIT Kerberos KDC processed principal names that were not null terminated, when the KDC was configured to use an LDAP back end. A remote attacker could use this flaw to crash the KDC via a specially-crafted request. (CVE-2011-0282) A denial of service flaw was found in the way the MIT Kerberos KDC processed certain principal names when the KDC was configured to use an LDAP back end. A remote attacker could use this flaw to cause the KDC to hang via a specially-crafted request. (CVE-2011-0281) Red Hat would like to thank the MIT Kerberos Team for reporting these issues. Upstream acknowledges Kevin Longfellow of Oracle Corporation as the original reporter of the CVE-2011-0281 issue. All krb5 users should upgrade to these updated packages, which contain a backported patch to correct these issues. After installing the updated packages, the krb5kdc daemon will be restarted automatically.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated krb5 packages that fix two security issues are now available for\nRed Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Kerberos is a network authentication system which allows clients and\nservers to authenticate to each other using symmetric encryption and a\ntrusted third-party, the Key Distribution Center (KDC).\n\nA NULL pointer dereference flaw was found in the way the MIT Kerberos KDC\nprocessed principal names that were not null terminated, when the KDC was\nconfigured to use an LDAP back end. A remote attacker could use this flaw\nto crash the KDC via a specially-crafted request. (CVE-2011-0282)\n\nA denial of service flaw was found in the way the MIT Kerberos KDC\nprocessed certain principal names when the KDC was configured to use an\nLDAP back end. A remote attacker could use this flaw to cause the KDC to\nhang via a specially-crafted request. (CVE-2011-0281)\n\nRed Hat would like to thank the MIT Kerberos Team for reporting these\nissues. Upstream acknowledges Kevin Longfellow of Oracle Corporation as the\noriginal reporter of the CVE-2011-0281 issue.\n\nAll krb5 users should upgrade to these updated packages, which contain a\nbackported patch to correct these issues. After installing the updated\npackages, the krb5kdc daemon will be restarted automatically.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2011:0199",
        "url": "https://access.redhat.com/errata/RHSA-2011:0199"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt",
        "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
      },
      {
        "category": "external",
        "summary": "668719",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=668719"
      },
      {
        "category": "external",
        "summary": "668726",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=668726"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2011/rhsa-2011_0199.json"
      }
    ],
    "title": "Red Hat Security Advisory: krb5 security update",
    "tracking": {
      "current_release_date": "2024-11-22T04:06:26+00:00",
      "generator": {
        "date": "2024-11-22T04:06:26+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2011:0199",
      "initial_release_date": "2011-02-08T21:39:00+00:00",
      "revision_history": [
        {
          "date": "2011-02-08T21:39:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2011-02-08T16:41:35+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T04:06:26+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux (v. 5.6.z server)",
                "product": {
                  "name": "Red Hat Enterprise Linux (v. 5.6.z server)",
                  "product_id": "5Server-5.6.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5::server"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-0:1.6.1-55.el5_6.1.src",
                "product": {
                  "name": "krb5-0:1.6.1-55.el5_6.1.src",
                  "product_id": "krb5-0:1.6.1-55.el5_6.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5@1.6.1-55.el5_6.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.ia64",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.ia64",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
                "product": {
                  "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
                  "product_id": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server-ldap@1.6.1-55.el5_6.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-0:1.6.1-55.el5_6.1.ia64",
                "product": {
                  "name": "krb5-server-0:1.6.1-55.el5_6.1.ia64",
                  "product_id": "krb5-server-0:1.6.1-55.el5_6.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server@1.6.1-55.el5_6.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.ia64",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.ia64",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
                "product": {
                  "name": "krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
                  "product_id": "krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-workstation@1.6.1-55.el5_6.1?arch=ia64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.i386",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.i386",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.i386",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.i386",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
                "product": {
                  "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
                  "product_id": "krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server-ldap@1.6.1-55.el5_6.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-0:1.6.1-55.el5_6.1.i386",
                "product": {
                  "name": "krb5-server-0:1.6.1-55.el5_6.1.i386",
                  "product_id": "krb5-server-0:1.6.1-55.el5_6.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server@1.6.1-55.el5_6.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-workstation-0:1.6.1-55.el5_6.1.i386",
                "product": {
                  "name": "krb5-workstation-0:1.6.1-55.el5_6.1.i386",
                  "product_id": "krb5-workstation-0:1.6.1-55.el5_6.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-workstation@1.6.1-55.el5_6.1?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=ppc64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.ppc",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.ppc",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
                "product": {
                  "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
                  "product_id": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server-ldap@1.6.1-55.el5_6.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-0:1.6.1-55.el5_6.1.ppc",
                "product": {
                  "name": "krb5-server-0:1.6.1-55.el5_6.1.ppc",
                  "product_id": "krb5-server-0:1.6.1-55.el5_6.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server@1.6.1-55.el5_6.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.ppc",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.ppc",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
                "product": {
                  "name": "krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
                  "product_id": "krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-workstation@1.6.1-55.el5_6.1?arch=ppc"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.s390x",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.s390x",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
                "product": {
                  "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
                  "product_id": "krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server-ldap@1.6.1-55.el5_6.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-0:1.6.1-55.el5_6.1.s390x",
                "product": {
                  "name": "krb5-server-0:1.6.1-55.el5_6.1.s390x",
                  "product_id": "krb5-server-0:1.6.1-55.el5_6.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server@1.6.1-55.el5_6.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.s390x",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.s390x",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
                "product": {
                  "name": "krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
                  "product_id": "krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-workstation@1.6.1-55.el5_6.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.s390",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.s390",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.s390",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.s390",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=s390"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
                "product": {
                  "name": "krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
                  "product_id": "krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-libs@1.6.1-55.el5_6.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
                "product": {
                  "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
                  "product_id": "krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-debuginfo@1.6.1-55.el5_6.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
                "product": {
                  "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
                  "product_id": "krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server-ldap@1.6.1-55.el5_6.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-server-0:1.6.1-55.el5_6.1.x86_64",
                "product": {
                  "name": "krb5-server-0:1.6.1-55.el5_6.1.x86_64",
                  "product_id": "krb5-server-0:1.6.1-55.el5_6.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-server@1.6.1-55.el5_6.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
                "product": {
                  "name": "krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
                  "product_id": "krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-devel@1.6.1-55.el5_6.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "krb5-workstation-0:1.6.1-55.el5_6.1.x86_64",
                "product": {
                  "name": "krb5-workstation-0:1.6.1-55.el5_6.1.x86_64",
                  "product_id": "krb5-workstation-0:1.6.1-55.el5_6.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/krb5-workstation@1.6.1-55.el5_6.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-0:1.6.1-55.el5_6.1.src as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src"
        },
        "product_reference": "krb5-0:1.6.1-55.el5_6.1.src",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64"
        },
        "product_reference": "krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.i386",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.ia64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.ppc",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.s390",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.s390x",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-devel-0:1.6.1-55.el5_6.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64"
        },
        "product_reference": "krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.i386",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.ia64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.ppc",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.ppc64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.s390 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.s390",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.s390x",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-libs-0:1.6.1-55.el5_6.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64"
        },
        "product_reference": "krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-0:1.6.1-55.el5_6.1.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386"
        },
        "product_reference": "krb5-server-0:1.6.1-55.el5_6.1.i386",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-0:1.6.1-55.el5_6.1.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64"
        },
        "product_reference": "krb5-server-0:1.6.1-55.el5_6.1.ia64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-0:1.6.1-55.el5_6.1.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc"
        },
        "product_reference": "krb5-server-0:1.6.1-55.el5_6.1.ppc",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-0:1.6.1-55.el5_6.1.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x"
        },
        "product_reference": "krb5-server-0:1.6.1-55.el5_6.1.s390x",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-0:1.6.1-55.el5_6.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64"
        },
        "product_reference": "krb5-server-0:1.6.1-55.el5_6.1.x86_64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386"
        },
        "product_reference": "krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64"
        },
        "product_reference": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc"
        },
        "product_reference": "krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x"
        },
        "product_reference": "krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64"
        },
        "product_reference": "krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-workstation-0:1.6.1-55.el5_6.1.i386 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386"
        },
        "product_reference": "krb5-workstation-0:1.6.1-55.el5_6.1.i386",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-workstation-0:1.6.1-55.el5_6.1.ia64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64"
        },
        "product_reference": "krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-workstation-0:1.6.1-55.el5_6.1.ppc as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc"
        },
        "product_reference": "krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-workstation-0:1.6.1-55.el5_6.1.s390x as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x"
        },
        "product_reference": "krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
        "relates_to_product_reference": "5Server-5.6.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "krb5-workstation-0:1.6.1-55.el5_6.1.x86_64 as a component of Red Hat Enterprise Linux (v. 5.6.z server)",
          "product_id": "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
        },
        "product_reference": "krb5-workstation-0:1.6.1-55.el5_6.1.x86_64",
        "relates_to_product_reference": "5Server-5.6.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "MIT Kerberos project"
          ]
        }
      ],
      "cve": "CVE-2011-0281",
      "discovery_date": "2011-01-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "668719"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \\n sequence.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "krb5: KDC hang when using LDAP backend caused by special principal name (MITKRB5-SA-2011-002)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of krb5 as shipped with Red Hat Enterprise Linux 3 or 4 as they did not include support for the LDAP backend.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-0281"
        },
        {
          "category": "external",
          "summary": "RHBZ#668719",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=668719"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-0281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0281"
        }
      ],
      "release_date": "2011-02-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2011-02-08T21:39:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2011:0199"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "products": [
            "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "krb5: KDC hang when using LDAP backend caused by special principal name (MITKRB5-SA-2011-002)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "MIT Kerberos project"
          ]
        }
      ],
      "cve": "CVE-2011-0282",
      "discovery_date": "2011-01-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "668726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "krb5: KDC crash when using LDAP backend caused by a special principal name (MITKRB5-SA-2011-002)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This issue did not affect the versions of krb5 as shipped with Red Hat Enterprise Linux 3 or 4 as they did not include support for the LDAP backend.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
          "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-0282"
        },
        {
          "category": "external",
          "summary": "RHBZ#668726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=668726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-0282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-0282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-0282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0282"
        }
      ],
      "release_date": "2011-02-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2011-02-08T21:39:00+00:00",
          "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259",
          "product_ids": [
            "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2011:0199"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "products": [
            "5Server-5.6.Z:krb5-0:1.6.1-55.el5_6.1.src",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-debuginfo-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-devel-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.ppc64",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-libs-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-server-ldap-0:1.6.1-55.el5_6.1.x86_64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.i386",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ia64",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.ppc",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.s390x",
            "5Server-5.6.Z:krb5-workstation-0:1.6.1-55.el5_6.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "krb5: KDC crash when using LDAP backend caused by a special principal name (MITKRB5-SA-2011-002)"
    }
  ]
}

cve-2011-0282

Vulnerability from cvelistv5

Published

2011-02-10 17:00

Modified

2024-08-06 21:51

Severity ?

Summary

The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name.

References

▼	URL	Tags
	http://www.mandriva.com/security/advisories?name=MDVSA-2011:025	vendor-advisory, x_refsource_MANDRIVA
	http://www.securityfocus.com/archive/1/520102/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
	http://secunia.com/advisories/46397	third-party-advisory, x_refsource_SECUNIA
	http://www.securityfocus.com/bid/46271	vdb-entry, x_refsource_BID
	http://www.vupen.com/english/advisories/2011/0347	vdb-entry, x_refsource_VUPEN
	http://secunia.com/advisories/43260	third-party-advisory, x_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2011/0333	vdb-entry, x_refsource_VUPEN
	http://www.redhat.com/support/errata/RHSA-2011-0199.html	vendor-advisory, x_refsource_REDHAT
	http://secunia.com/advisories/43273	third-party-advisory, x_refsource_SECUNIA
	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt	x_refsource_CONFIRM
	http://www.securityfocus.com/archive/1/516299/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
	http://www.securitytracker.com/id?1025037	vdb-entry, x_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html	vendor-advisory, x_refsource_SUSE
	http://www.vmware.com/security/advisories/VMSA-2011-0012.html	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=MDVSA-2011:024	vendor-advisory, x_refsource_MANDRIVA
	http://www.vupen.com/english/advisories/2011/0464	vdb-entry, x_refsource_VUPEN
	http://securityreason.com/securityalert/8073	third-party-advisory, x_refsource_SREASON
	https://exchange.xforce.ibmcloud.com/vulnerabilities/65323	vdb-entry, x_refsource_XF
	http://www.vupen.com/english/advisories/2011/0330	vdb-entry, x_refsource_VUPEN
	http://secunia.com/advisories/43275	third-party-advisory, x_refsource_SECUNIA
	http://www.redhat.com/support/errata/RHSA-2011-0200.html	vendor-advisory, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:51:07.938Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "MDVSA-2011:025",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:025"
          },
          {
            "name": "20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
          },
          {
            "name": "46397",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46397"
          },
          {
            "name": "46271",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/46271"
          },
          {
            "name": "ADV-2011-0347",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0347"
          },
          {
            "name": "43260",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43260"
          },
          {
            "name": "ADV-2011-0333",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0333"
          },
          {
            "name": "RHSA-2011:0199",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-0199.html"
          },
          {
            "name": "43273",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43273"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
          },
          {
            "name": "20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/516299/100/0/threaded"
          },
          {
            "name": "1025037",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1025037"
          },
          {
            "name": "SUSE-SR:2011:004",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
          },
          {
            "name": "MDVSA-2011:024",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:024"
          },
          {
            "name": "ADV-2011-0464",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0464"
          },
          {
            "name": "8073",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/8073"
          },
          {
            "name": "kerberos-ldap-dos(65323)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65323"
          },
          {
            "name": "ADV-2011-0330",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0330"
          },
          {
            "name": "43275",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43275"
          },
          {
            "name": "RHSA-2011:0200",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-0200.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-02-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-10T18:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "MDVSA-2011:025",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:025"
        },
        {
          "name": "20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
        },
        {
          "name": "46397",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46397"
        },
        {
          "name": "46271",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/46271"
        },
        {
          "name": "ADV-2011-0347",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0347"
        },
        {
          "name": "43260",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43260"
        },
        {
          "name": "ADV-2011-0333",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0333"
        },
        {
          "name": "RHSA-2011:0199",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-0199.html"
        },
        {
          "name": "43273",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43273"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
        },
        {
          "name": "20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/516299/100/0/threaded"
        },
        {
          "name": "1025037",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1025037"
        },
        {
          "name": "SUSE-SR:2011:004",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
        },
        {
          "name": "MDVSA-2011:024",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:024"
        },
        {
          "name": "ADV-2011-0464",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0464"
        },
        {
          "name": "8073",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/8073"
        },
        {
          "name": "kerberos-ldap-dos(65323)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65323"
        },
        {
          "name": "ADV-2011-0330",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0330"
        },
        {
          "name": "43275",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43275"
        },
        {
          "name": "RHSA-2011:0200",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-0200.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-0282",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "MDVSA-2011:025",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:025"
            },
            {
              "name": "20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
            },
            {
              "name": "46397",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/46397"
            },
            {
              "name": "46271",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/46271"
            },
            {
              "name": "ADV-2011-0347",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0347"
            },
            {
              "name": "43260",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43260"
            },
            {
              "name": "ADV-2011-0333",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0333"
            },
            {
              "name": "RHSA-2011:0199",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-0199.html"
            },
            {
              "name": "43273",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43273"
            },
            {
              "name": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt",
              "refsource": "CONFIRM",
              "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
            },
            {
              "name": "20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/516299/100/0/threaded"
            },
            {
              "name": "1025037",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1025037"
            },
            {
              "name": "SUSE-SR:2011:004",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html"
            },
            {
              "name": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html",
              "refsource": "CONFIRM",
              "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
            },
            {
              "name": "MDVSA-2011:024",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:024"
            },
            {
              "name": "ADV-2011-0464",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0464"
            },
            {
              "name": "8073",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/8073"
            },
            {
              "name": "kerberos-ldap-dos(65323)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65323"
            },
            {
              "name": "ADV-2011-0330",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0330"
            },
            {
              "name": "43275",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43275"
            },
            {
              "name": "RHSA-2011:0200",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-0200.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2011-0282",
    "datePublished": "2011-02-10T17:00:00",
    "dateReserved": "2011-01-03T00:00:00",
    "dateUpdated": "2024-08-06T21:51:07.938Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2011-0281

Vulnerability from cvelistv5

Published

2011-02-10 17:00

Modified

2024-08-06 21:51

Severity ?

Summary

The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \n sequence.

References

▼	URL	Tags
	http://www.mandriva.com/security/advisories?name=MDVSA-2011:025	vendor-advisory, x_refsource_MANDRIVA
	http://www.securityfocus.com/bid/46265	vdb-entry, x_refsource_BID
	http://www.securityfocus.com/archive/1/520102/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
	http://secunia.com/advisories/46397	third-party-advisory, x_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2011/0347	vdb-entry, x_refsource_VUPEN
	http://secunia.com/advisories/43260	third-party-advisory, x_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2011/0333	vdb-entry, x_refsource_VUPEN
	http://www.redhat.com/support/errata/RHSA-2011-0199.html	vendor-advisory, x_refsource_REDHAT
	http://secunia.com/advisories/43273	third-party-advisory, x_refsource_SECUNIA
	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt	x_refsource_CONFIRM
	http://www.securityfocus.com/archive/1/516299/100/0/threaded	mailing-list, x_refsource_BUGTRAQ
	http://www.securitytracker.com/id?1025037	vdb-entry, x_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html	vendor-advisory, x_refsource_SUSE
	http://www.vmware.com/security/advisories/VMSA-2011-0012.html	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=MDVSA-2011:024	vendor-advisory, x_refsource_MANDRIVA
	http://www.vupen.com/english/advisories/2011/0464	vdb-entry, x_refsource_VUPEN
	http://securityreason.com/securityalert/8073	third-party-advisory, x_refsource_SREASON
	https://exchange.xforce.ibmcloud.com/vulnerabilities/65324	vdb-entry, x_refsource_XF
	http://www.vupen.com/english/advisories/2011/0330	vdb-entry, x_refsource_VUPEN
	http://mailman.mit.edu/pipermail/kerberos/2010-December/016800.html	mailing-list, x_refsource_MLIST
	http://secunia.com/advisories/43275	third-party-advisory, x_refsource_SECUNIA
	http://www.redhat.com/support/errata/RHSA-2011-0200.html	vendor-advisory, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:51:07.754Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "MDVSA-2011:025",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:025"
          },
          {
            "name": "46265",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/46265"
          },
          {
            "name": "20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
          },
          {
            "name": "46397",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46397"
          },
          {
            "name": "ADV-2011-0347",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0347"
          },
          {
            "name": "43260",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43260"
          },
          {
            "name": "ADV-2011-0333",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0333"
          },
          {
            "name": "RHSA-2011:0199",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-0199.html"
          },
          {
            "name": "43273",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43273"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
          },
          {
            "name": "20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/516299/100/0/threaded"
          },
          {
            "name": "1025037",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1025037"
          },
          {
            "name": "SUSE-SR:2011:004",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
          },
          {
            "name": "MDVSA-2011:024",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:024"
          },
          {
            "name": "ADV-2011-0464",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0464"
          },
          {
            "name": "8073",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/8073"
          },
          {
            "name": "kerberos-ldap-descriptor-dos(65324)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65324"
          },
          {
            "name": "ADV-2011-0330",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0330"
          },
          {
            "name": "[kerberos] 20101222 LDAP handle unavailable: Can\u0027t contact LDAP server",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://mailman.mit.edu/pipermail/kerberos/2010-December/016800.html"
          },
          {
            "name": "43275",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43275"
          },
          {
            "name": "RHSA-2011:0200",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-0200.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2010-12-22T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \\n sequence."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-10T18:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "MDVSA-2011:025",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:025"
        },
        {
          "name": "46265",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/46265"
        },
        {
          "name": "20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
        },
        {
          "name": "46397",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46397"
        },
        {
          "name": "ADV-2011-0347",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0347"
        },
        {
          "name": "43260",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43260"
        },
        {
          "name": "ADV-2011-0333",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0333"
        },
        {
          "name": "RHSA-2011:0199",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-0199.html"
        },
        {
          "name": "43273",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43273"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
        },
        {
          "name": "20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/516299/100/0/threaded"
        },
        {
          "name": "1025037",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1025037"
        },
        {
          "name": "SUSE-SR:2011:004",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
        },
        {
          "name": "MDVSA-2011:024",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:024"
        },
        {
          "name": "ADV-2011-0464",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0464"
        },
        {
          "name": "8073",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/8073"
        },
        {
          "name": "kerberos-ldap-descriptor-dos(65324)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65324"
        },
        {
          "name": "ADV-2011-0330",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0330"
        },
        {
          "name": "[kerberos] 20101222 LDAP handle unavailable: Can\u0027t contact LDAP server",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://mailman.mit.edu/pipermail/kerberos/2010-December/016800.html"
        },
        {
          "name": "43275",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43275"
        },
        {
          "name": "RHSA-2011:0200",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-0200.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-0281",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \\n sequence."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "MDVSA-2011:025",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:025"
            },
            {
              "name": "46265",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/46265"
            },
            {
              "name": "20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/520102/100/0/threaded"
            },
            {
              "name": "46397",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/46397"
            },
            {
              "name": "ADV-2011-0347",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0347"
            },
            {
              "name": "43260",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43260"
            },
            {
              "name": "ADV-2011-0333",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0333"
            },
            {
              "name": "RHSA-2011:0199",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-0199.html"
            },
            {
              "name": "43273",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43273"
            },
            {
              "name": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt",
              "refsource": "CONFIRM",
              "url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt"
            },
            {
              "name": "20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/516299/100/0/threaded"
            },
            {
              "name": "1025037",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1025037"
            },
            {
              "name": "SUSE-SR:2011:004",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html"
            },
            {
              "name": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html",
              "refsource": "CONFIRM",
              "url": "http://www.vmware.com/security/advisories/VMSA-2011-0012.html"
            },
            {
              "name": "MDVSA-2011:024",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:024"
            },
            {
              "name": "ADV-2011-0464",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0464"
            },
            {
              "name": "8073",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/8073"
            },
            {
              "name": "kerberos-ldap-descriptor-dos(65324)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65324"
            },
            {
              "name": "ADV-2011-0330",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0330"
            },
            {
              "name": "[kerberos] 20101222 LDAP handle unavailable: Can\u0027t contact LDAP server",
              "refsource": "MLIST",
              "url": "http://mailman.mit.edu/pipermail/kerberos/2010-December/016800.html"
            },
            {
              "name": "43275",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43275"
            },
            {
              "name": "RHSA-2011:0200",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-0200.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2011-0281",
    "datePublished": "2011-02-10T17:00:00",
    "dateReserved": "2011-01-03T00:00:00",
    "dateUpdated": "2024-08-06T21:51:07.754Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

rhsa-2011_0199

Vulnerability from csaf_redhat

cve-2011-0282

Vulnerability from cvelistv5

cve-2011-0281

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature