CVE-2010-0629

Common Vulnerabilities and Exposures

Upstream information

CVE-2010-0629 at MITRE

Description

Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an invalid API version number.

NVD CVSS v2 Base Score: 4.0 (AV:N/AC:L/Au:S/C:N/I:N/A:P)

Novell/SUSE information

Novell Bugzilla entry: 591049

SUSE Security Advisories:

SUSE-SR:2010:009, published Wed, 14 Apr 2010 13:00:00 +0000
openSUSE-SU-2010:0099-1, published Mon, 12 Apr 2010 13:08:10 +0200 (CEST)
openSUSE-SU-2010:0172-1, published Fri, 16 Apr 2010 16:11:11 +0200 (CEST)
openSUSE-SU-test-2010:32216-1, published Thu, 15 Apr 2010 19:23:44 +0200 (CEST)

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE 11.0	`krb5-debuginfo >= 1.6.3-50.9` `krb5-debugsource >= 1.6.3-50.9`
openSUSE 11.0	`krb5 >= 1.6.3-50.9` `krb5-32bit >= 1.6.3-50.9` `krb5-64bit >= 1.6.3-50.9` `krb5-apps-clients >= 1.6.3-50.9` `krb5-apps-servers >= 1.6.3-50.9` `krb5-client >= 1.6.3-50.9` `krb5-devel >= 1.6.3-50.9` `krb5-devel-32bit >= 1.6.3-50.9` `krb5-devel-64bit >= 1.6.3-50.9` `krb5-server >= 1.6.3-50.9`
openSUSE 11.1	`krb5-debuginfo >= 1.6.3-132.7.1` `krb5-debuginfo-32bit >= 1.6.3-132.7.1` `krb5-debuginfo-64bit >= 1.6.3-132.7.1` `krb5-debugsource >= 1.6.3-132.7.1`
openSUSE 11.1	`krb5 >= 1.6.3-132.7.1` `krb5-32bit >= 1.6.3-132.7.1` `krb5-64bit >= 1.6.3-132.7.1` `krb5-apps-clients >= 1.6.3-132.7.1` `krb5-apps-servers >= 1.6.3-132.7.1` `krb5-client >= 1.6.3-132.7.1` `krb5-devel >= 1.6.3-132.7.1` `krb5-devel-32bit >= 1.6.3-132.7.1` `krb5-devel-64bit >= 1.6.3-132.7.1` `krb5-server >= 1.6.3-132.7.1`
SUSE Linux Enterprise 11 GA DEBUGINFO	`krb5-debuginfo >= 1.6.3-133.27.1` `krb5-debugsource >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise 11 GA DEBUGINFO	`krb5-debuginfo >= 1.6.3-133.27.1` `krb5-debuginfo-x86 >= 1.6.3-133.27.1` `krb5-debugsource >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise 11 GA DEBUGINFO	`krb5-debuginfo >= 1.6.3-133.27.1` `krb5-debuginfo-32bit >= 1.6.3-133.27.1` `krb5-debugsource >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise SDK 11 GA	`krb5-devel >= 1.6.3-133.27.1` `krb5-server >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise SDK 11 GA	`krb5-devel >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise SDK 11 GA	`krb5-devel >= 1.6.3-133.27.1` `krb5-devel-32bit >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise SDK 11 GA	`krb5-devel >= 1.6.3-133.27.1` `krb5-devel-32bit >= 1.6.3-133.27.1` `krb5-server >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise Desktop 11 GA	`krb5 >= 1.6.3-133.27.1` `krb5-client >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise Desktop 11 GA	`krb5 >= 1.6.3-133.27.1` `krb5-32bit >= 1.6.3-133.27.1` `krb5-client >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise Server 11 GA	`krb5 >= 1.6.3-133.27.1` `krb5-apps-clients >= 1.6.3-133.27.1` `krb5-apps-servers >= 1.6.3-133.27.1` `krb5-client >= 1.6.3-133.27.1` `krb5-server >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise Server 11 GA	`krb5 >= 1.6.3-133.27.1` `krb5-apps-clients >= 1.6.3-133.27.1` `krb5-apps-servers >= 1.6.3-133.27.1` `krb5-client >= 1.6.3-133.27.1` `krb5-server >= 1.6.3-133.27.1` `krb5-x86 >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235
SUSE Linux Enterprise Server 11 GA	`krb5 >= 1.6.3-133.27.1` `krb5-32bit >= 1.6.3-133.27.1` `krb5-apps-clients >= 1.6.3-133.27.1` `krb5-apps-servers >= 1.6.3-133.27.1` `krb5-client >= 1.6.3-133.27.1` `krb5-server >= 1.6.3-133.27.1`	sles11.x86 sles11.x86-64 sles11.ia64 sled11.x86 sle11-sdk.s390x sle11-debuginfo.x86 sles11.s390x sle11-sdk.x86-64 sle11-debuginfo.ia64 sle11-debuginfo.x86-64 sle11-debuginfo.ppc sled11.x86-64 sle11-sdk.ia64 sles11.ppc sle11-sdk.x86 sle11-debuginfo.s390x sle11-sdk.ppc SAT Patch Nr: 2235

Products

Products By Category

Collaboration

Endpoint Management

File & Networking Services

Services & Support

Help Yourself

Let Us Help

Download

IT Consulting

Technical Training

Customer Center

Contribute

Partners

Partner With Novell

PartnerNet

Find a Partner

Developers

Communities

About Novell

How to Buy