CVE-2013-1415 — NULL Pointer Dereference in Kerberos 5

CWE-476 — NULL Pointer Dereference10 documents8 sources

Severity

5.0MEDIUMNVD

EPSS

1.6%

top 18.34%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

MIT Krb5 MIT Kerberos 5 Opensuse

Timeline

PublishedMar 5

Latest updateMay 13

Description

The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1.11.x before 1.11.1 does not properly handle errors during extraction of fields from an X.509 certificate, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed KRB5_PADATA_PK_AS_REQ AS-REQ request.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDmit/kerberos_5< 1.10.4+1

▶Debianmit/krb5< 1.10.1+dfsg-4+3

▶NVDopensuse/opensuse11.4

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-gvc4-pvfx-8p8m: The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl↗2022-05-13

▶

OSV

krb5 vulnerabilities↗2014-08-11

▶

OSV

CVE-2013-1415: The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl↗2013-03-05

▶

CVEList

CVE-2013-1415: The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl↗2013-03-03

▶

📋Vendor Advisories

Ubuntu

Kerberos vulnerabilities↗2014-08-11

▶

Red Hat

krb5: PKINIT null pointer deref leads to DoS (pkinit_check_kdc_pkid())↗2013-02-15

▶

Debian

CVE-2013-1415: krb5 - The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_opens...↗2013

▶

💬Community

Bugzilla

CVE-2013-1415 krb5: PKINIT null pointer deref leads to DoS [fedora-all]↗2013-02-22

▶

Bugzilla

CVE-2013-1415 krb5: PKINIT null pointer deref leads to DoS (pkinit_check_kdc_pkid())↗2013-02-22

▶