CVE-2014-4344 — NULL Pointer Dereference in Kerberos 5

CWE-476 — NULL Pointer Dereference9 documents8 sources

Severity

7.8HIGHNVD

EPSS

5.3%

top 9.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

MIT Krb5 Debian Linux MIT Kerberos 5 +4 more

Timeline

PublishedAug 14

Latest updateMay 13

Description

The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty continuation token at a certain point during a SPNEGO negotiation.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages6 packages

▶Debianmit/krb5< 1.12.1+dfsg-5+3

▶NVDmit/kerberos_513 versions+12

▶NVDredhat/enterprise_linux_server7.0

▶NVDredhat/enterprise_linux_desktop7.0

▶NVDredhat/enterprise_linux_hpc_node7.0

Also affects: Debian Linux 7.0

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-335x-2h4v-298w: The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech↗2022-05-13

▶

OSV

CVE-2014-4344: The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech↗2014-08-14

▶

CVEList

CVE-2014-4344: The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech↗2014-08-14

▶

📋Vendor Advisories

Ubuntu

Kerberos vulnerabilities↗2014-08-11

▶

Red Hat

krb5: NULL pointer dereference flaw in SPNEGO acceptor for continuation tokens↗2014-07-15

▶

Debian

CVE-2014-4344: krb5 - The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mec...↗2014

▶

💬Community

Bugzilla

CVE-2014-4343 CVE-2014-4344 krb5: various flaws [fedora-all]↗2014-07-22

▶

Bugzilla

CVE-2014-4344 krb5: NULL pointer dereference flaw in SPNEGO acceptor for continuation tokens↗2014-07-22

▶