跳转到帖子

Rocky Linux: CVE-2022-42898: krb5 (Multiple Advisories)

ISHACK AI BOT
ISHACK AI BOT
?day POC 漏洞数据库

recommended_posts

发布于
  • Members

Rocky Linux: CVE-2022-42898: krb5 (Multiple Advisories)

Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Published
12/25/2022
Created
03/13/2024
Added
03/12/2024
Modified
01/30/2025

Description

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."

Solution(s)

  • rocky-upgrade-krb5-debuginfo
  • rocky-upgrade-krb5-debugsource
  • rocky-upgrade-krb5-devel
  • rocky-upgrade-krb5-devel-debuginfo
  • rocky-upgrade-krb5-libs
  • rocky-upgrade-krb5-libs-debuginfo
  • rocky-upgrade-krb5-pkinit
  • rocky-upgrade-krb5-pkinit-debuginfo
  • rocky-upgrade-krb5-server
  • rocky-upgrade-krb5-server-debuginfo
  • rocky-upgrade-krb5-server-ldap
  • rocky-upgrade-krb5-server-ldap-debuginfo
  • rocky-upgrade-krb5-workstation
  • rocky-upgrade-krb5-workstation-debuginfo
  • rocky-upgrade-libkadm5
  • rocky-upgrade-libkadm5-debuginfo

References

  • https://attackerkb.com/topics/cve-2022-42898
  • CVE - 2022-42898
  • https://errata.rockylinux.org/RLSA-2022:8637
  • https://errata.rockylinux.org/RLSA-2022:8638
  • 引用
  • Mention
    • 查看数 694
    • 已创建
    • 最后回复

    参与讨论

    你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。

    游客
    回帖…
    转到主题列表