CVE-2016-3119

The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through 1.13.4 and 1.14.x through 1.14.1 mishandles the DB argument, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request to modify a principal.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
opensuseleap
42.1
opensuseopensuse
13.2
mitkerberos_5
1.0
mitkerberos_5
1.0.6
mitkerberos_5
1.1
mitkerberos_5
1.1.1
mitkerberos_5
1.2
mitkerberos_5
1.2:beta1
mitkerberos_5
1.2:beta2
mitkerberos_5
1.2.1
mitkerberos_5
1.2.2
mitkerberos_5
1.2.3
mitkerberos_5
1.2.4
mitkerberos_5
1.2.5
mitkerberos_5
1.2.6
mitkerberos_5
1.2.7
mitkerberos_5
1.2.8
mitkerberos_5
1.3
mitkerberos_5
1.3:alpha1
mitkerberos_5
1.3.1
mitkerberos_5
1.3.2
mitkerberos_5
1.3.3
mitkerberos_5
1.3.4
mitkerberos_5
1.3.5
mitkerberos_5
1.3.6
mitkerberos_5
1.4
mitkerberos_5
1.4.1
mitkerberos_5
1.4.2
mitkerberos_5
1.4.3
mitkerberos_5
1.4.4
mitkerberos_5
1.5
mitkerberos_5
1.5.1
mitkerberos_5
1.5.2
mitkerberos_5
1.5.3
mitkerberos_5
1.6
mitkerberos_5
1.6.1
mitkerberos_5
1.6.2
mitkerberos_5
1.7
mitkerberos_5
1.7.1
mitkerberos_5
1.8
mitkerberos_5
1.8.1
mitkerberos_5
1.8.2
mitkerberos_5
1.8.3
mitkerberos_5
1.8.4
mitkerberos_5
1.8.5
mitkerberos_5
1.8.6
mitkerberos_5
1.9
mitkerberos_5
1.9.1
mitkerberos_5
1.9.2
mitkerberos_5
1.9.3
mitkerberos_5
1.9.4
mitkerberos_5
1.10
mitkerberos_5
1.10.1
mitkerberos_5
1.10.2
mitkerberos_5
1.10.3
mitkerberos_5
1.10.4
mitkerberos_5
1.11
mitkerberos_5
1.11.1
mitkerberos_5
1.11.2
mitkerberos_5
1.11.3
mitkerberos_5
1.11.4
mitkerberos_5
1.11.5
mitkerberos_5
1.12
mitkerberos_5
1.12.1
mitkerberos_5
1.12.2
mitkerberos_5
1.12.3
mitkerberos_5
1.13
mitkerberos_5
1.13.1
mitkerberos_5
1.13.2
mitkerberos_5
1.13.3
mitkerberos_5
1.13.4
mitkerberos_5
1.14:alpha1
mitkerberos_5
1.14:beta1
mitkerberos_5
1.14:beta2
mitkerberos_5
1.14.0
mitkerberos_5
1.14.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
krb5
bullseye (security)
1.18.3-6+deb11u5
fixed
bullseye
1.18.3-6+deb11u5
fixed
bookworm
1.20.1-2+deb12u2
fixed
bookworm (security)
1.20.1-2+deb12u2
fixed
sid
1.21.3-3
fixed
trixie
1.21.3-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
krb5
hirsute
not-affected
groovy
not-affected
focal
not-affected
eoan
not-affected
disco
not-affected
cosmic
not-affected
bionic
not-affected
artful
not-affected
zesty
not-affected
yakkety
not-affected
xenial
Fixed 1.13.2+dfsg-5ubuntu2.1
released
wily
ignored
trusty
Fixed 1.12+dfsg-2ubuntu5.4
released
precise
ignored
References
http://lists.opensuse.org/opensuse-updates/2016-04/msg00007.html
http://lists.opensuse.org/opensuse-updates/2016-04/msg00055.html
http://rhn.redhat.com/errata/RHSA-2016-2591.html
http://www.securityfocus.com/bid/85392
http://www.securitytracker.com/id/1035399
https://github.com/krb5/krb5/commit/08c642c09c38a9c6454ab43a9b53b2a89b9eef99
https://lists.debian.org/debian-lts-announce/2018/01/msg00040.html
http://lists.opensuse.org/opensuse-updates/2016-04/msg00007.html
http://lists.opensuse.org/opensuse-updates/2016-04/msg00055.html
http://rhn.redhat.com/errata/RHSA-2016-2591.html
http://www.securityfocus.com/bid/85392
http://www.securitytracker.com/id/1035399
https://github.com/krb5/krb5/commit/08c642c09c38a9c6454ab43a9b53b2a89b9eef99
https://lists.debian.org/debian-lts-announce/2018/01/msg00040.html