CVE-2018-20217

A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt ticket using an older encryption type (single-DES, triple-DES, or RC4), the attacker can crash the KDC by making an S4U2Self request.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
mitkerberos
𝑥
< 5-1.17
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
krb5
bookworm
1.20.1-2+deb12u2
fixed
bookworm (security)
1.20.1-2+deb12u2
fixed
bullseye
1.18.3-6+deb11u5
fixed
bullseye (security)
1.18.3-6+deb11u5
fixed
sid
1.21.3-3
fixed
trixie
1.21.3-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
krb5
bionic
Fixed 1.16-2ubuntu0.3
released
cosmic
ignored
disco
ignored
eoan
ignored
focal
not-affected
groovy
not-affected
hirsute
not-affected
impish
not-affected
jammy
not-affected
kinetic
not-affected
trusty
Fixed 1.12+dfsg-2ubuntu5.4+esm1
released
xenial
Fixed 1.13.2+dfsg-5ubuntu2.2+esm3
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
krb5
suse enterprise desktop 15
1.15.2-6.3.1
fixed
suse enterprise desktop 15 SP1
1.16.3-1.16
fixed
suse enterprise desktop 15 SP2
1.16.3-3.6.1
fixed
suse enterprise desktop 15 SP3
1.16.3-3.15.1
fixed
suse enterprise desktop 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise desktop 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise desktop 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise sap 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise server 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-32bit
suse enterprise desktop 15
1.15.2-6.3.1
fixed
suse enterprise desktop 15 SP1
1.16.3-1.16
fixed
suse enterprise desktop 15 SP2
1.16.3-3.6.1
fixed
suse enterprise desktop 15 SP3
1.16.3-3.15.1
fixed
suse enterprise desktop 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise desktop 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise desktop 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise sap 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise server 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-client
suse enterprise desktop 15
1.15.2-6.3.1
fixed
suse enterprise desktop 15 SP1
1.16.3-1.16
fixed
suse enterprise desktop 15 SP2
1.16.3-3.6.1
fixed
suse enterprise desktop 15 SP3
1.16.3-3.15.1
fixed
suse enterprise desktop 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise desktop 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise desktop 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise sap 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise server 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-devel
suse enterprise desktop 15
1.15.2-6.3.1
fixed
suse enterprise desktop 15 SP1
1.16.3-1.16
fixed
suse enterprise desktop 15 SP2
1.16.3-3.6.1
fixed
suse enterprise desktop 15 SP3
1.16.3-3.15.1
fixed
suse enterprise desktop 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise desktop 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise desktop 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise sap 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise server 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-doc
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
krb5-plugin-kdb-ldap
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-plugin-preauth-otp
suse enterprise desktop 15
1.15.2-6.3.1
fixed
suse enterprise desktop 15 SP1
1.16.3-1.16
fixed
suse enterprise desktop 15 SP2
1.16.3-3.6.1
fixed
suse enterprise desktop 15 SP3
1.16.3-3.15.1
fixed
suse enterprise desktop 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise desktop 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise desktop 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise sap 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise server 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-plugin-preauth-pkinit
suse enterprise desktop 15
1.15.2-6.3.1
fixed
suse enterprise desktop 15 SP1
1.16.3-1.16
fixed
suse enterprise desktop 15 SP2
1.16.3-3.6.1
fixed
suse enterprise desktop 15 SP3
1.16.3-3.15.1
fixed
suse enterprise desktop 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise desktop 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise desktop 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise desktop 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise sap 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP5
1.20.1-150500.1.2
fixed
suse enterprise server 15 SP6
1.20.1-150600.9.2
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
krb5-server
suse enterprise sap 12 SP3
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP4
1.12.5-40.31.1
fixed
suse enterprise sap 12 SP5
1.12.5-40.37.7
fixed
suse enterprise sap 15
1.15.2-6.3.1
fixed
suse enterprise sap 15 SP1
1.16.3-1.16
fixed
suse enterprise sap 15 SP2
1.16.3-3.6.1
fixed
suse enterprise sap 15 SP3
1.16.3-3.15.1
fixed
suse enterprise sap 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise sap 15 SP7
1.20.1-150600.11.8.1
fixed
suse enterprise server 12
1.12.1-38.13.2
fixed
suse enterprise server 12 SP1
1.12.1-38.13.2
fixed
suse enterprise server 12 SP2
1.12.5-40.31.1
fixed
suse enterprise server 12 SP3
1.12.5-40.31.1
fixed
suse enterprise server 12 SP4
1.12.5-40.31.1
fixed
suse enterprise server 12 SP5
1.12.5-40.37.7
fixed
suse enterprise server 15
1.15.2-6.3.1
fixed
suse enterprise server 15 SP1
1.16.3-1.16
fixed
suse enterprise server 15 SP2
1.16.3-3.6.1
fixed
suse enterprise server 15 SP3
1.16.3-3.15.1
fixed
suse enterprise server 15 SP4
1.19.2-150400.1.9
fixed
suse enterprise server 15 SP7
1.20.1-150600.11.8.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
krb5-devel
RHEL 7
0:1.15.1-37.el7_7.2
fixed
krb5-libs
RHEL 7
0:1.15.1-37.el7_7.2
fixed
krb5-pkinit
RHEL 7
0:1.15.1-37.el7_7.2
fixed
krb5-server
RHEL 7
0:1.15.1-37.el7_7.2
fixed
krb5-server-ldap
RHEL 7
0:1.15.1-37.el7_7.2
fixed
krb5-workstation
RHEL 7
0:1.15.1-37.el7_7.2
fixed
libkadm5
RHEL 7
0:1.15.1-37.el7_7.2
fixed
Common Weakness Enumeration
References
http://krbdev.mit.edu/rt/Ticket/Display.html?id=8763
https://github.com/krb5/krb5/commit/5e6d1796106df8ba6bc1973ee0917c170d929086
https://lists.debian.org/debian-lts-announce/2019/01/msg00020.html
https://lists.debian.org/debian-lts-announce/2021/09/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2KNHELH4YHNT6H2ESJWX2UIDXLBNGB2O/
https://security.netapp.com/advisory/ntap-20190416-0006/
http://krbdev.mit.edu/rt/Ticket/Display.html?id=8763
https://github.com/krb5/krb5/commit/5e6d1796106df8ba6bc1973ee0917c170d929086
https://lists.debian.org/debian-lts-announce/2019/01/msg00020.html
https://lists.debian.org/debian-lts-announce/2021/09/msg00019.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2KNHELH4YHNT6H2ESJWX2UIDXLBNGB2O/
https://security.netapp.com/advisory/ntap-20190416-0006/