CVE-2012-1013

Name of the Vulnerable Software and Affected Versions krb5 versions 1.8.x through 1.10.x before 1.10.2 krb5-1.9 krb5-workstation-1.9 krb5-debuginfo-1.9 krb5-libs-1.9 krb5-devel-1.9 krb5-server-1.9 krb5-pkinit-openssl-1.9 krb5-server-ldap-1.9

Description The issue affects the confidentiality, integrity, and availability of protected information. It can be exploited remotely. The check 1 6 dummy function in lib/kadm5/srv/svr principal.c in kadmind allows remote authenticated administrators to cause a denial of service via a KRB5 KDB DISALLOW ALL TIX create request that lacks a password, resulting in a NULL pointer dereference and daemon crash.

Recommendations For krb5 versions 1.8.x through 1.10.x before 1.10.2, update to version 1.10.2 or later. For krb5-1.9, krb5-workstation-1.9, krb5-debuginfo-1.9, krb5-libs-1.9, krb5-devel-1.9, krb5-server-1.9, krb5-pkinit-openssl-1.9, krb5-server-ldap-1.9, consider disabling the check 1 6 dummy function as a temporary workaround until a patch is available. Restrict access to the kadmind service to minimize the risk of exploitation. Avoid using the KRB5 KDB DISALLOW ALL TIX create request without a password until the issue is resolved.