CVE-2015-2695 (debian_linux, kerberos_5, leap, linux_enterprise_desktop, linux_enterprise_server, linux_enterprise_software_development_kit, opensuse, solaris, ubuntu_linux)

lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that is mishandled during a gss_inquire_context call.

View Full Alert

CVE-2002-2443 (debian_linux, enterprise_linux_desktop, enterprise_linux_eus, enterprise_linux_server, enterprise_linux_server_aus, enterprise_linux_workstation, fedora, kerberos_5, opensuse, ubuntu_linux)
schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause…
CVE-2010-2478 (linux_enterprise_desktop, linux_enterprise_server, linux_kernel, ubuntu_linux)
Integer overflow in the ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit platforms allows local users to cause a denial of service or possibly have unspecified…
CVE-2009-2903 (linux_enterprise_debuginfo, linux_enterprise_desktop, linux_enterprise_server, linux_enterprise_software_development_kit, linux_kernel, ubuntu_linux)
Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x through 2.6.31, when the appletalk and ipddp modules are loaded but the ipddp"N" device is…

410-897-9494
Receive RedZone Security Updates in Your InboxContact Us

CVE-2015-2695 (debian_linux, kerberos_5, leap, linux_enterprise_desktop, linux_enterprise_server, linux_enterprise_software_development_kit, opensuse, solaris, ubuntu_linux)

Leave a Reply Cancel reply

Related Posts

Leave a Reply Cancel reply