CVE-2022-42898
published 2022-12-25CVE-2022-42898: PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."
Affected
51 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | heimdal | < heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) | heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) |
| debian | krb5 | < heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) | heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) |
| debian | samba | < heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) | heimdal 7.8.git20221115.a6cf945+dfsg-1 (bookworm) |
| heimdal_project | heimdal | < 7.7.1 | 7.7.1 |
| heimdal_project | heimdal | >= 0 < 7.7.0+dfsg-2+deb11u2 | 7.7.0+dfsg-2+deb11u2 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221115.a6cf945+dfsg-1 | 7.8.git20221115.a6cf945+dfsg-1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221115.a6cf945+dfsg-1 | 7.8.git20221115.a6cf945+dfsg-1 |
| heimdal_project | heimdal | >= 0 < 7.8.git20221115.a6cf945+dfsg-1 | 7.8.git20221115.a6cf945+dfsg-1 |
| heimdal_project | heimdal | >= 0 < 7.5.0+dfsg-1ubuntu0.3 | 7.5.0+dfsg-1ubuntu0.3 |
| heimdal_project | heimdal | >= 0 < 7.7.0+dfsg-1ubuntu1.3 | 7.7.0+dfsg-1ubuntu1.3 |
| heimdal_project | heimdal | >= 0 < 1.6~git20131207+dfsg-1ubuntu1.2+esm3 | 1.6~git20131207+dfsg-1ubuntu1.2+esm3 |
| heimdal_project | heimdal | >= 0 < 1.7~git20150920+dfsg-4ubuntu1.16.04.1+esm3 | 1.7~git20150920+dfsg-4ubuntu1.16.04.1+esm3 |
| mit | kerberos_5 | — | — |
| mit | kerberos_5 | >= 1.8 < 1.19.4 | 1.19.4 |
| mit | krb5 | >= 0 < 1.18.3-6+deb11u3 | 1.18.3-6+deb11u3 |
| mit | krb5 | >= 0 < 1.20.1-1 | 1.20.1-1 |
| mit | krb5 | >= 0 < 1.20.1-1 | 1.20.1-1 |
| mit | krb5 | >= 0 < 1.20.1-1 | 1.20.1-1 |
| mit | krb5 | >= 0 < 1.16-2ubuntu0.3 | 1.16-2ubuntu0.3 |
| mit | krb5 | >= 0 < 1.17-6ubuntu4.2 | 1.17-6ubuntu4.2 |
| mit | krb5 | >= 0 < 1.19.2-2ubuntu0.1 | 1.19.2-2ubuntu0.1 |
| mit | krb5 | >= 0 < 1.12+dfsg-2ubuntu5.4+esm3 | 1.12+dfsg-2ubuntu5.4+esm3 |
| mit | krb5 | >= 0 < 1.13.2+dfsg-5ubuntu2.2+esm3 | 1.13.2+dfsg-5ubuntu2.2+esm3 |
| msrc | azl3_samba_4.18.3-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH