CVE-2021-37750
published 2021-08-23CVE-2021-37750: The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a…
PriorityP432medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
EPSS
2.17%
80.0th percentile
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | krb5 | < krb5 1.18.3-7 (bookworm) | krb5 1.18.3-7 (bookworm) |
| fedoraproject | fedora | — | — |
| mit | kerberos_5 | < 1.18.5 | 1.18.5 |
| mit | kerberos_5 | >= 1.19.0 < 1.19.3 | 1.19.3 |
| mit | krb5 | >= 0 < 1.18.3-6+deb11u1 | 1.18.3-6+deb11u1 |
| mit | krb5 | >= 0 < 1.18.3-7 | 1.18.3-7 |
| mit | krb5 | >= 0 < 1.18.3-7 | 1.18.3-7 |
| mit | krb5 | >= 0 < 1.18.3-7 | 1.18.3-7 |
| mit | krb5 | >= 0 < 1.16-2ubuntu0.4 | 1.16-2ubuntu0.4 |
| mit | krb5 | >= 0 < 1.17-6ubuntu4.3 | 1.17-6ubuntu4.3 |
| msrc | cbl2_krb5_1.19.3-1_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_krb5_1.18.4-1_on_cbl_mariner_1.0 | — | — |
| oracle | communications_cloud_native_core_network_slice_selection_function | — | — |
| starwindsoftware | starwind_virtual_san | — | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
osv7.5HIGH
vendor_ubuntu7.5HIGH
vendor_debian6.5MEDIUM
vendor_msrc6.5MEDIUM
vendor_oracle6.5MEDIUM
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
krb5 vulnerabilities
osv·2023-03-16·CVSS 7.5
CVE-2021-36222 [HIGH] krb5 vulnerabilities
krb5 vulnerabilities
It was discovered that Kerberos incorrectly handled memory when processing
KDC data, which could lead to a NULL pointer dereference. An attacker could
possibly use this issue to cause a denial of service or have other
unspecified impacts. (CVE-2021-36222, CVE-2021-37750)
GHSA
GHSA-p36j-vmfc-m4v5: The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1
ghsa_unreviewed·2022-05-24
CVE-2021-37750 [MEDIUM] CWE-476 GHSA-p36j-vmfc-m4v5: The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
OSV
CVE-2021-37750: The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1
osv·2021-08-23·CVSS 6.5
CVE-2021-37750 [MEDIUM] CVE-2021-37750: The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
Ubuntu
Kerberos vulnerabilities
vendor_ubuntu·2023-03-16·CVSS 7.5
CVE-2021-36222 [HIGH] Kerberos vulnerabilities
Title: Kerberos vulnerabilities
Summary: Several security issues were fixed in Kerberos.
It was discovered that Kerberos incorrectly handled memory when processing
KDC data, which could lead to a NULL pointer dereference. An attacker could
possibly use this issue to cause a denial of service or have other
unspecified impacts. (CVE-2021-36222, CVE-2021-37750)
Instructions: In general, a standard system update will make all the necessary changes.
Oracle
Oracle Oracle Communications Risk Matrix: NSSF (MIT Kerberos) — CVE-2021-37750
vendor_oracle·2022-07-15·CVSS 6.5
CVE-2021-37750 [MEDIUM] Oracle Oracle Communications Risk Matrix: NSSF (MIT Kerberos) — CVE-2021-37750
Oracle Oracle Communications Risk Matrix: NSSF (MIT Kerberos) vulnerability
CVE: CVE-2021-37750
CVSS: 6.5
Protocol: HTTP
Remote exploit: No
Affected versions: Network
Advisory: cpujul2022 (JUL 2022)
Red Hat
krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field
vendor_redhat·2021-08-19·CVSS 6.5
CVE-2021-37750 [MEDIUM] CWE-476 krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field
krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
A flaw was found in krb5. The Key Distribution Center (KDC) in MIT Kerberos 5 has a NULL pointer dereference via a FAST inner body that lacks a server field. An authenticated attacker could use this flaw to crash the Kerberos KDC server. The highest threat from this vulnerability is to system availability.
Package: krb5 (Red Hat Enterprise Linux 6) - Not affected
Package: krb5 (Red Hat Enterprise Linux 9) - Not affected
Package: krb5 (Red Hat JBoss Core Services) - Not a
Microsoft
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field
vendor_msrc·2021-08-10·CVSS 6.5
CVE-2021-37750 [MEDIUM] CWE-476 The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update th
Debian
CVE-2021-37750: krb5 - The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and...
vendor_debian·2021·CVSS 6.5
CVE-2021-37750 [MEDIUM] CVE-2021-37750: krb5 - The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and...
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
Scope: local
bookworm: resolved (fixed in 1.18.3-7)
bullseye: resolved (fixed in 1.18.3-6+deb11u1)
forky: resolved (fixed in 1.18.3-7)
sid: resolved (fixed in 1.18.3-7)
trixie: resolved (fixed in 1.18.3-7)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/krb5/krb5/commit/d775c95af7606a51bf79547a94fa52ddd1cb7f49https://github.com/krb5/krb5/releaseshttps://lists.debian.org/debian-lts-announce/2021/09/msg00019.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MFCLW7D46E4VCREKKH453T5DA4XOLHU2/https://security.netapp.com/advisory/ntap-20210923-0002/https://web.mit.edu/kerberos/advisories/https://www.oracle.com/security-alerts/cpujul2022.htmlhttps://www.starwindsoftware.com/security/sw-20220817-0004/https://github.com/krb5/krb5/commit/d775c95af7606a51bf79547a94fa52ddd1cb7f49https://github.com/krb5/krb5/releaseshttps://lists.debian.org/debian-lts-announce/2021/09/msg00019.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MFCLW7D46E4VCREKKH453T5DA4XOLHU2/https://security.netapp.com/advisory/ntap-20210923-0002/https://web.mit.edu/kerberos/advisories/https://www.oracle.com/security-alerts/cpujul2022.htmlhttps://www.starwindsoftware.com/security/sw-20220817-0004/
2021-08-23
Published