Launchpad CVE tracker

CVE 2023-36054

lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_key_data and the key_data array count.

Related bugs and status

CVE-2023-36054 (Candidate) is related to these bugs:

Bug #2038795: [Debian] High CVE: CVE-2023-36054 krb5: a remote authenticated user can trigger a kadmind crash

Summary				In	Importance	Status
	2038795	[Debian] High CVE: CVE-2023-36054 krb5: a remote authenticated user can trigger a kadmind crash		StarlingX	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://github.com/krb...
MISC: https://github.com/krb...
MISC: https://github.com/krb...
MISC: https://web.mit.edu/ke...
CONFIRM: https://security.netap...
MLIST: [debian-lts-announce] ...

Launchpad.net

CVE 2023-36054

Related bugs and status

Related bugs

References