CVE-2015-8630 — NULL Pointer Dereference in Kerberos 5

CWE-476 — NULL Pointer Dereference8 documents7 sources

Severity

7.5HIGHNVD

EPSS

3.0%

top 13.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

MIT Krb5 MIT Kerberos 5

Timeline

PublishedFeb 13

Latest updateMay 13

Description

The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by specifying KADM5_POLICY with a NULL policy name.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶Debianmit/krb5< 1.13.2+dfsg-5+3

▶NVDmit/kerberos_511 versions+10

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-ccgj-jmwf-5p3g: The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal↗2022-05-13

▶

CVEList

CVE-2015-8630: The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal↗2016-02-13

▶

OSV

CVE-2015-8630: The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal↗2016-02-13

▶

📋Vendor Advisories

Red Hat

krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask↗2016-01-08

▶

Debian

CVE-2015-8630: krb5 - The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib...↗2015

▶

💬Community

Bugzilla

CVE-2015-8630 krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask↗2016-01-28

▶

Bugzilla

CVE-2015-8630 krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask [fedora-all]↗2016-01-28

▶