CVE-2018-5729

CWE-476NULL Pointer DereferenceCWE-9011 documents7 sources
Severity
4.7MEDIUM
EPSS
0.1%
top 77.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
MIT Kerberos 5Debian Debian LinuxFedoraproject Fedora+3 more
Timeline
PublishedMar 6
Latest updateMay 13

Description

MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:LExploitability: 1.2 | Impact: 3.4

Affected Packages5 packages

NVDmit/kerberos_55-1.65-1.21.2
Debiankrb5< 1.16.1-1+3

Also affects: Debian Linux 8.0, 9.0, Fedora 26, 27

Patches

Patch: bugzilla.redhat.comPatch: github.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

3
GHSA
GHSA-c28w-559x-wr7v: MIT krb5 12022-05-13
OSV
CVE-2018-5729: MIT krb5 12018-03-06
CVEList
CVE-2018-5729: MIT krb5 12018-03-06

📋Vendor Advisories

3
Red Hat
krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data2018-03-01
Red Hat
krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c2018-01-15
Debian
CVE-2018-5729: krb5 - MIT krb5 1.6 or later allows an authenticated kadmin with permission to add prin...2018

💬Community

4
Bugzilla
CVE-2018-5729 krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data [fedora-all]2018-03-02
Bugzilla
CVE-2018-5729 krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data2018-03-02
Bugzilla
CVE-2018-5729, CVE-2018-5730 krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c [fedora-all]2018-01-17
Bugzilla
CVE-2018-5710 krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c2018-01-17