CVE-2013-1416 — NULL Pointer Dereference in Kerberos 5

CWE-476 — NULL Pointer Dereference9 documents8 sources

Severity

4.0MEDIUMNVD

EPSS

2.3%

top 15.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

MIT Krb5 MIT Kerberos 5 Fedoraproject Fedora +6 more

Timeline

PublishedApr 19

Latest updateMay 13

Description

The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages6 packages

▶NVDmit/kerberos_5< 1.10.5

▶Debianmit/krb5< 1.10.1+dfsg-5+3

▶NVDopensuse/opensuse4 versions+3

▶NVDredhat/enterprise_linux_server6.0

▶NVDredhat/enterprise_linux_desktop6.0

Also affects: Fedora 17, 18, Enterprise Linux 6.4

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-4vgm-5r69-wvp8: The prep_reprocess_req function in do_tgs_req↗2022-05-13

▶

OSV

CVE-2013-1416: The prep_reprocess_req function in do_tgs_req↗2013-04-19

▶

CVEList

CVE-2013-1416: The prep_reprocess_req function in do_tgs_req↗2013-04-19

▶

📋Vendor Advisories

Ubuntu

Kerberos vulnerabilities↗2014-08-11

▶

Red Hat

krb5: NULL pointer dereference (DoS, KDC crash) by processing certain TGS requests↗2013-03-29

▶

Debian

CVE-2013-1416: krb5 - The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (...↗2013

▶

💬Community

Bugzilla

CVE-2013-1416 krb5: NULL pointer dereference (DoS, KDC crash) by processing certain TGS requests↗2013-04-09

▶

Bugzilla

CVE-2013-1416 krb5: NULL pointer dereference (DoS, KDC crash) by processing certain TGS requests [fedora-all]↗2013-04-09

▶