Oval Definition:oval:org.mitre.oval:def:13068
Revision Date:2014-06-30Version:20
Title:USN-1030-1 -- krb5 vulnerabilities
Description:It was discovered that Kerberos did not properly determine the acceptability of certain checksums. A remote attacker could use certain checksums to alter the prompt message, modify a response to a Key Distribution Center or forge a KRB-SAFE message. It was discovered that Kerberos did not properly determine the acceptability of certain checksums. A remote attacker could use certain checksums to forge GSS tokens or gain privileges. This issue only affected Ubuntu 9.10, 10.04 LTS and 10.10. It was discovered that Kerberos did not reject RC4 key-derivation checksums. An authenticated remote user could use this issue to forge AD-SIGNEDPATH or AD-KDC-ISSUED signatures and possibly gain privileges. This issue only affected Ubuntu 10.04 LTS and 10.10. It was discovered that Kerberos did not properly restrict the use of TGT credentials for armoring TGS requests. A remote authenticated user could use this flaw to impersonate a client. This issue only affected Ubuntu 9.10
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-1323
CVE-2010-1324
CVE-2010-4020
CVE-2010-4021
USN-1030-1
USN-1030-1
Platform(s):Ubuntu 10.04
Ubuntu 10.10
Ubuntu 6.06
Ubuntu 8.04
Ubuntu 9.10
Product(s):krb5
Definition Synopsis
  • Release section
  • Ubuntu 8.04 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND krb5-doc DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is lpia
  • AND Packages section
  • krb5-rsh-server DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-telnetd DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR libkrb53 DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR libkrb5-dev DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-ftpd DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-pkinit DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-admin-server DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR libkadm55 DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR libkrb5-dbg DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-user DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-clients DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR krb5-kdc DPKG is earlier than 1.6.dfsg.3~beta1-2ubuntu1.6
  • OR Release section
  • Ubuntu 10.10 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND krb5-doc DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is powerpc
  • OR Installed architecture is armel
  • OR Installed architecture is amd64
  • OR Installed architecture is i386
  • AND Packages section
  • libgssrpc4 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR krb5-multidev DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libk5crypto3 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR krb5-kdc-ldap DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkrb5-dev DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkadm5srv-mit7 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkadm5clnt-mit7 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR krb5-pkinit DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkrb5-3 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkdb5-4 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkrb5-dbg DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR krb5-user DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR krb5-kdc DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libkrb5support0 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR libgssapi-krb5-2 DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR krb5-admin-server DPKG is earlier than 1.8.1+dfsg-5ubuntu0.2
  • OR Release section
  • Ubuntu 10.04 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND krb5-doc DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is armel
  • AND Packages section
  • krb5-multidev DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libk5crypto3 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR krb5-kdc-ldap DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkadm5srv-mit7 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkrb5-dev DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR krb5-pkinit DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR krb5-admin-server DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkrb5-3 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkdb5-4 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkrb5-dbg DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR krb5-user DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR krb5-kdc DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libgssrpc4 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkrb5support0 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libgssapi-krb5-2 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR libkadm5clnt-mit7 DPKG is earlier than 1.8.1+dfsg-2ubuntu0.4
  • OR Release section
  • Ubuntu 9.10 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND krb5-doc DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is lpia
  • AND Packages section
  • krb5-rsh-server DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libk5crypto3 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-kdc-ldap DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-telnetd DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkadm5clnt6 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkdb5-4 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libgssrpc4 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkrb5-dev DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-ftpd DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-pkinit DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkadm5srv6 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-admin-server DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkrb5-3 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkrb5-dbg DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-user DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-clients DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libkrb5support0 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR libgssapi-krb5-2 DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR krb5-kdc DPKG is earlier than 1.7dfsg~beta3-1ubuntu0.7
  • OR Release section
  • Ubuntu 6.06 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND krb5-doc DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is sparc
  • OR Installed architecture is powerpc
  • OR Installed architecture is amd64
  • OR Installed architecture is i386
  • AND Packages section
  • krb5-rsh-server DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR krb5-telnetd DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR libkrb53 DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR libkrb5-dev DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR krb5-ftpd DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR krb5-admin-server DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR libkadm55 DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR krb5-user DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR krb5-clients DPKG is earlier than 1.4.3-5ubuntu0.12
  • OR krb5-kdc DPKG is earlier than 1.4.3-5ubuntu0.12
    • BACK