USN-6467-1
- Source
- https://ubuntu.com/security/notices/USN-6467-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6467-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/USN-6467-1
- Upstream
- Related
- Published
- 2023-11-01T11:26:31Z
- Modified
- 2026-04-22T11:09:45.815066Z
- Summary
- krb5 vulnerability
- Details
-
Robert Morris discovered that Kerberos did not properly handle memory access when processing RPC data through kadmind, which could lead to the freeing of uninitialized memory. An authenticated remote attacker could possibly use this issue to cause kadmind to crash, resulting in a denial of service.
- References
Affected packages
Ubuntu:Pro:14.04:LTS / krb5
Package
- Name
- krb5
- Purl
- pkg:deb/ubuntu/krb5@1.12+dfsg-2ubuntu5.4+esm4?arch=source&distro=trusty/esm
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.12+dfsg-2ubuntu5.4+esm4
Affected versions
1.*
1.10.1+dfsg-6.1ubuntu1
1.11.3+dfsg-3ubuntu2
1.12+dfsg-2ubuntu1
1.12+dfsg-2ubuntu2
1.12+dfsg-2ubuntu3
1.12+dfsg-2ubuntu4
1.12+dfsg-2ubuntu4.2
1.12+dfsg-2ubuntu5
1.12+dfsg-2ubuntu5.1
1.12+dfsg-2ubuntu5.2
1.12+dfsg-2ubuntu5.3
1.12+dfsg-2ubuntu5.4
1.12+dfsg-2ubuntu5.4+esm1
1.12+dfsg-2ubuntu5.4+esm2
1.12+dfsg-2ubuntu5.4+esm3
Ecosystem specific
{
"binaries": [
{
"binary_name": "krb5-admin-server",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-gss-samples",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-kdc",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-kdc-ldap",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-locales",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-multidev",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-otp",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-pkinit",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "krb5-user",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libgssapi-krb5-2",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libgssrpc4",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libk5crypto3",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkadm5clnt-mit9",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkadm5srv-mit8",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkadm5srv-mit9",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkdb5-7",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkrad0",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkrb5-3",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
},
{
"binary_name": "libkrb5support0",
"binary_version": "1.12+dfsg-2ubuntu5.4+esm4"
}
],
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"
}
Database specific
cves_map
{
"cves": [
{
"id": "CVE-2023-36054",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
}
],
"ecosystem": "Ubuntu:Pro:14.04:LTS"
}
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6467-1.json"
Ubuntu:Pro:16.04:LTS / krb5
Package
- Name
- krb5
- Purl
- pkg:deb/ubuntu/krb5@1.13.2+dfsg-5ubuntu2.2+esm4?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.13.2+dfsg-5ubuntu2.2+esm4
Affected versions
1.*
1.13.2+dfsg-2
1.13.2+dfsg-3
1.13.2+dfsg-4
1.13.2+dfsg-5
1.13.2+dfsg-5ubuntu1
1.13.2+dfsg-5ubuntu2
1.13.2+dfsg-5ubuntu2.1
1.13.2+dfsg-5ubuntu2.1+esm1
1.13.2+dfsg-5ubuntu2.2
1.13.2+dfsg-5ubuntu2.2+esm3
Ecosystem specific
{
"binaries": [
{
"binary_name": "krb5-admin-server",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-gss-samples",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-k5tls",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-kdc",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-kdc-ldap",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-locales",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-multidev",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-otp",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-pkinit",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "krb5-user",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libgssapi-krb5-2",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libgssrpc4",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libk5crypto3",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libkadm5clnt-mit9",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libkadm5srv-mit9",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libkdb5-8",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libkrad0",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libkrb5-3",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
},
{
"binary_name": "libkrb5support0",
"binary_version": "1.13.2+dfsg-5ubuntu2.2+esm4"
}
],
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"
}
Database specific
cves_map
{
"cves": [
{
"id": "CVE-2023-36054",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
}
],
"ecosystem": "Ubuntu:Pro:16.04:LTS"
}
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6467-1.json"
Ubuntu:Pro:18.04:LTS / krb5
Package
- Name
- krb5
- Purl
- pkg:deb/ubuntu/krb5@1.16-2ubuntu0.4+esm1?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.16-2ubuntu0.4+esm1
Affected versions
1.*
1.15.1-2
1.16-2
1.16-2build1
1.16-2ubuntu0.1
1.16-2ubuntu0.1+esm1
1.16-2ubuntu0.2
1.16-2ubuntu0.3
1.16-2ubuntu0.4
Ecosystem specific
{
"binaries": [
{
"binary_name": "krb5-admin-server",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-gss-samples",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-k5tls",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-kdc",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-kdc-ldap",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-kpropd",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-locales",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-multidev",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-otp",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-pkinit",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "krb5-user",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libgssapi-krb5-2",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libgssrpc4",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libk5crypto3",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libkadm5clnt-mit11",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libkadm5srv-mit11",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libkdb5-9",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libkrad0",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libkrb5-3",
"binary_version": "1.16-2ubuntu0.4+esm1"
},
{
"binary_name": "libkrb5support0",
"binary_version": "1.16-2ubuntu0.4+esm1"
}
],
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro"
}
Database specific
cves_map
{
"cves": [
{
"id": "CVE-2023-36054",
"severity": [
{
"type": "CVSS_V3",
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
},
{
"type": "Ubuntu",
"score": "medium"
}
]
}
],
"ecosystem": "Ubuntu:Pro:18.04:LTS"
}
source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6467-1.json"