CVE-2013-4122
published 2013-10-27CVE-2013-4122: Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17…
PriorityP420medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
3.59%
88.0th percentile
Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service (thread crash and consumption) via (1) an invalid salt or, when FIPS-140 is enabled, a (2) DES or (3) MD5 encrypted password, which triggers a NULL pointer dereference.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cmu | cyrus-sasl | <= 2.1.26 | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| cmu | cyrus-sasl | — | — |
| debian | cyrus-sasl2 | < cyrus-sasl2 2.1.26.dfsg1-14 (bookworm) | cyrus-sasl2 2.1.26.dfsg1-14 (bookworm) |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Cyrus SASL vulnerability
vendor_ubuntu·2015-09-30
CVE-2013-4122 Cyrus SASL vulnerability
Title: Cyrus SASL vulnerability
Summary: Cyrus SASL could be made to crash if it processed specially crafted input.
It was discovered that Cyrus SASL incorrectly handled certain invalid
password salts. An attacker could use this issue to cause Cyrus SASL to
crash, resulting in a denial of service.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Ubuntu
Cyrus SASL vulnerability
vendor_ubuntu·2013-10-09
CVE-2013-4122 Cyrus SASL vulnerability
Title: Cyrus SASL vulnerability
Summary: Cyrus SASL could be made to crash if it processed specially crafted input.
It was discovered that Cyrus SASL incorrectly handled certain invalid
password salts. An attacker could use this issue to cause Cyrus SASL to
crash, resulting in a denial of service.
Instructions: After a standard system update you need to reboot your computer to make all
the necessary changes.
Red Hat
cyrus-sasl: NULL pointer dereference (DoS) when glibc v.2.17 or FIPS-140 enabled Linux system used
vendor_redhat·2013-07-12·CVSS 4.3
CVE-2013-4122 [MEDIUM] CWE-476 cyrus-sasl: NULL pointer dereference (DoS) when glibc v.2.17 or FIPS-140 enabled Linux system used
cyrus-sasl: NULL pointer dereference (DoS) when glibc v.2.17 or FIPS-140 enabled Linux system used
Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service (thread crash and consumption) via (1) an invalid salt or, when FIPS-140 is enabled, a (2) DES or (3) MD5 encrypted password, which triggers a NULL pointer dereference.
Statement: Not Vulnerable. This issue does not affect the version of cyrus-sasl package as shipped with Red Hat Enterprise Linux 5 and 6.
Package: cyrus-sasl (Red Hat Enterprise Linux 5) - Not affected
Package: cyrus-sasl (Red Hat Enterprise Linux 6) - Not affected
Package: cyrus-sasl (Red Hat Ent
Debian
CVE-2013-4122: cyrus-sasl2 - Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL valu...
vendor_debian·2013·CVSS 4.3
CVE-2013-4122 [MEDIUM] CVE-2013-4122: cyrus-sasl2 - Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL valu...
Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service (thread crash and consumption) via (1) an invalid salt or, when FIPS-140 is enabled, a (2) DES or (3) MD5 encrypted password, which triggers a NULL pointer dereference.
Scope: local
bookworm: resolved (fixed in 2.1.26.dfsg1-14)
bullseye: resolved (fixed in 2.1.26.dfsg1-14)
forky: resolved (fixed in 2.1.26.dfsg1-14)
sid: resolved (fixed in 2.1.26.dfsg1-14)
trixie: resolved (fixed in 2.1.26.dfsg1-14)
GHSA
GHSA-pwpx-m778-r79w: Cyrus SASL 2
ghsa_unreviewed·2022-05-17
CVE-2013-4122 [MEDIUM] GHSA-pwpx-m778-r79w: Cyrus SASL 2
Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service (thread crash and consumption) via (1) an invalid salt or, when FIPS-140 is enabled, a (2) DES or (3) MD5 encrypted password, which triggers a NULL pointer dereference.
OSV
CVE-2013-4122: Cyrus SASL 2
osv·2013-10-27·CVSS 4.3
CVE-2013-4122 [MEDIUM] CVE-2013-4122: Cyrus SASL 2
Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service (thread crash and consumption) via (1) an invalid salt or, when FIPS-140 is enabled, a (2) DES or (3) MD5 encrypted password, which triggers a NULL pointer dereference.
No detection rules found.
No public exploits indexed.
http://git.cyrusimap.org/cyrus-sasl/commit/?id=dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40dhttp://security.gentoo.org/glsa/glsa-201309-01.xmlhttp://www.debian.org/security/2015/dsa-3368http://www.openwall.com/lists/oss-security/2013/07/12/3http://www.openwall.com/lists/oss-security/2013/07/12/6http://www.openwall.com/lists/oss-security/2013/07/13/1http://www.openwall.com/lists/oss-security/2013/07/15/1http://www.ubuntu.com/usn/USN-2755-1https://www.linuxquestions.org/questions/slackware-14/%5Bslackware-current%5D-glibc-2-17-shadow-and-other-penumbrae-4175461061/http://git.cyrusimap.org/cyrus-sasl/commit/?id=dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40dhttp://security.gentoo.org/glsa/glsa-201309-01.xmlhttp://www.debian.org/security/2015/dsa-3368http://www.openwall.com/lists/oss-security/2013/07/12/3http://www.openwall.com/lists/oss-security/2013/07/12/6http://www.openwall.com/lists/oss-security/2013/07/13/1http://www.openwall.com/lists/oss-security/2013/07/15/1http://www.ubuntu.com/usn/USN-2755-1https://www.linuxquestions.org/questions/slackware-14/%5Bslackware-current%5D-glibc-2-17-shadow-and-other-penumbrae-4175461061/
2013-10-27
Published