In the client side of Heimdal before 7.6.0, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack. This issue is in krb5initcredsstep in lib/krb5/initcreds_pw.c.
{
"unresolved_ranges": [
{
"source": "CPE_STRING",
"vendor_product": "debian:debian_linux",
"cpes": [
"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "9.0"
},
{
"last_affected": "9.0"
}
]
},
{
"source": "CPE_STRING",
"vendor_product": "fedoraproject:fedora",
"cpes": [
"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "30"
},
{
"last_affected": "30"
},
{
"introduced": "31"
},
{
"last_affected": "31"
}
]
},
{
"source": "CPE_STRING",
"vendor_product": "opensuse:backports_sle",
"cpes": [
"cpe:2.3:a:opensuse:backports_sle:15.0:-:*:*:*:*:*:*",
"cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "15.0-NA"
},
{
"last_affected": "15.0-NA"
},
{
"introduced": "15.0-sp1"
},
{
"last_affected": "15.0-sp1"
}
]
},
{
"source": "CPE_STRING",
"vendor_product": "opensuse:leap",
"cpes": [
"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "15.0"
},
{
"last_affected": "15.0"
},
{
"introduced": "15.1"
},
{
"last_affected": "15.1"
},
{
"introduced": "42.3"
},
{
"last_affected": "42.3"
}
]
}
]
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "7.6.0"
}
],
"cpe": "cpe:2.3:a:heimdal_project:heimdal:*:*:*:*:*:*:*:*"
}"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-12098.json"
"2026-07-09T04:43:05Z"
[
{
"source": "https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf",
"digest": {
"length": 6746.0,
"function_hash": "239451779831776701030370729553326217963"
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-12098-3473ff51",
"target": {
"function": "krb5_init_creds_step",
"file": "lib/krb5/init_creds_pw.c"
},
"signature_type": "Function"
},
{
"source": "https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf",
"digest": {
"threshold": 0.9,
"line_hashes": [
"157905797815404682526821631083992957802",
"77077079028435348282945182426218165738",
"232278302168403443626434313658558027612"
]
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-12098-81d6eb0e",
"target": {
"file": "lib/krb5/pkinit.c"
},
"signature_type": "Line"
},
{
"source": "https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf",
"digest": {
"threshold": 0.9,
"line_hashes": [
"94971240621567312815457331887032315308",
"80927413706729359648894526490031709185",
"77888480259620153279995465692430115069",
"120247920660774625577499905939642226608"
]
},
"deprecated": false,
"signature_version": "v1",
"id": "CVE-2019-12098-eccdb06f",
"target": {
"file": "lib/krb5/init_creds_pw.c"
},
"signature_type": "Line"
}
]