Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2007-4743 (GCVE-0-2007-4743)
Vulnerability from cvelistv5 – Published: 2007-09-06 22:00 – Updated: 2024-08-07 15:08
VLAI?
EPSS
Summary
The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T15:08:33.521Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-1387",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"name": "26699",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/26699"
},
{
"name": "SUSE-SR:2007:019",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"name": "RHSA-2007:0892",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"name": "26444",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/26444"
},
{
"name": "USN-511-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"name": "20070907 FLEA-2007-0050-1 krb5 krb5-workstation",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"name": "26987",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/26987"
},
{
"name": "APPLE-SA-2007-11-14",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"name": "20070906 rPSA-2007-0179-1 krb5 krb5-server krb5-services krb5-test krb5-workstation",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
},
{
"name": "oval:org.mitre.oval:def:10239",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"name": "ADV-2007-3868",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2007/3868"
},
{
"name": "27643",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/27643"
},
{
"name": "TA07-319A",
"tags": [
"third-party-advisory",
"x_refsource_CERT",
"x_transferred"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2007-09-05T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "DSA-1387",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"name": "26699",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/26699"
},
{
"name": "SUSE-SR:2007:019",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"name": "RHSA-2007:0892",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"name": "26444",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/26444"
},
{
"name": "USN-511-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"name": "20070907 FLEA-2007-0050-1 krb5 krb5-workstation",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"name": "26987",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/26987"
},
{
"name": "APPLE-SA-2007-11-14",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"name": "20070906 rPSA-2007-0179-1 krb5 krb5-server krb5-services krb5-test krb5-workstation",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
},
{
"name": "oval:org.mitre.oval:def:10239",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"name": "ADV-2007-3868",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2007/3868"
},
{
"name": "27643",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/27643"
},
{
"name": "TA07-319A",
"tags": [
"third-party-advisory",
"x_refsource_CERT"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2007-4743",
"datePublished": "2007-09-06T22:00:00",
"dateReserved": "2007-09-06T00:00:00",
"dateUpdated": "2024-08-07T15:08:33.521Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52F0EECF-7787-442B-9888-D22F7D36C3DE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF344AED-BE00-4A9B-A9DE-C6FB0BEE4617\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"567406CA-58D8-453E-B36E-6D1D2EFC8EB6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7830E03F-A813-4E35-893E-BF27395CEFB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7764411E-C056-4696-822E-235F2620FAC4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4DD315AE-868B-4061-BF01-CDBF59B02499\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B639DD5F-71C7-4D9B-BA5C-51CAF64140B6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2B904DCE-D59F-45C7-A814-DE42CF02792D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9957FE9E-1E89-4C27-852C-44F866A1834E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C382DAA-68D2-4DD9-BE29-8EEB0BAF1A7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"73BB258E-51CF-4D12-836B-BCEA587A3F5F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F81DE01C-BA3B-40B4-BD85-17692F0AF8A8\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.\"}, {\"lang\": \"es\", \"value\": \"El parche original para la CVE-2007-3999 en el svc_auth_gss.c de la librer\\u00eda RPCSEC_GSS RPC en el MIT Kerberos 5 (krb5) 1.4 hasta el 1.6.2, como el utilizado en el demonio de administraci\\u00f3n del Kerberos (kadmind) y otras aplicaciones que utlizan el krb5, no verifica correctamente la longitud del b\\u00fafer en algunos entornos y arquitecturas, lo que puede permitir a atacantes remotos llevar a cabo un ataque de desbordamiento de b\\u00fafer.\"}]",
"id": "CVE-2007-4743",
"lastModified": "2024-11-21T00:36:20.743",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2007-09-06T22:17:00.000",
"references": "[{\"url\": \"http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\"]}, {\"url\": \"http://docs.info.apple.com/article.html?artnum=307041\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/26699\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/26987\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/27643\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.debian.org/security/2007/dsa-1387\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.novell.com/linux/security/advisories/2007_19_sr.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2007-0892.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.securityfocus.com/archive/1/478748/100/0/threaded\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.securityfocus.com/archive/1/478794/100/0/threaded\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.securityfocus.com/bid/26444\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.ubuntu.com/usn/usn-511-2\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-319A.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3868\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://issues.rpath.com/browse/RPL-1696\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://docs.info.apple.com/article.html?artnum=307041\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/26699\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/26987\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/27643\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2007/dsa-1387\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.novell.com/linux/security/advisories/2007_19_sr.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2007-0892.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/478748/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/478794/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/26444\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ubuntu.com/usn/usn-511-2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-319A.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/3868\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://issues.rpath.com/browse/RPL-1696\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2007-4743\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2007-09-06T22:17:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.\"},{\"lang\":\"es\",\"value\":\"El parche original para la CVE-2007-3999 en el svc_auth_gss.c de la librer\u00eda RPCSEC_GSS RPC en el MIT Kerberos 5 (krb5) 1.4 hasta el 1.6.2, como el utilizado en el demonio de administraci\u00f3n del Kerberos (kadmind) y otras aplicaciones que utlizan el krb5, no verifica correctamente la longitud del b\u00fafer en algunos entornos y arquitecturas, lo que puede permitir a atacantes remotos llevar a cabo un ataque de desbordamiento de b\u00fafer.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52F0EECF-7787-442B-9888-D22F7D36C3DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF344AED-BE00-4A9B-A9DE-C6FB0BEE4617\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"567406CA-58D8-453E-B36E-6D1D2EFC8EB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7830E03F-A813-4E35-893E-BF27395CEFB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7764411E-C056-4696-822E-235F2620FAC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DD315AE-868B-4061-BF01-CDBF59B02499\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B639DD5F-71C7-4D9B-BA5C-51CAF64140B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B904DCE-D59F-45C7-A814-DE42CF02792D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9957FE9E-1E89-4C27-852C-44F866A1834E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C382DAA-68D2-4DD9-BE29-8EEB0BAF1A7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73BB258E-51CF-4D12-836B-BCEA587A3F5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F81DE01C-BA3B-40B4-BD85-17692F0AF8A8\"}]}]}],\"references\":[{\"url\":\"http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://docs.info.apple.com/article.html?artnum=307041\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/26699\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/26987\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/27643\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2007/dsa-1387\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2007_19_sr.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0892.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/478748/100/0/threaded\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/archive/1/478794/100/0/threaded\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/26444\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/usn-511-2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-319A.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/3868\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://issues.rpath.com/browse/RPL-1696\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://docs.info.apple.com/article.html?artnum=307041\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26699\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/26987\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/27643\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2007/dsa-1387\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2007_19_sr.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0892.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/478748/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/478794/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/26444\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/usn-511-2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-319A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/3868\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://issues.rpath.com/browse/RPL-1696\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
GHSA-2PM5-H4RP-CJQ3
Vulnerability from github – Published: 2022-05-01 18:26 – Updated: 2022-05-01 18:26
VLAI?
Details
The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.
{
"affected": [],
"aliases": [
"CVE-2007-4743"
],
"database_specific": {
"cwe_ids": [
"CWE-119"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2007-09-06T22:17:00Z",
"severity": "HIGH"
},
"details": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.",
"id": "GHSA-2pm5-h4rp-cjq3",
"modified": "2022-05-01T18:26:35Z",
"published": "2022-05-01T18:26:35Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4743"
},
{
"type": "WEB",
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
},
{
"type": "WEB",
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"type": "WEB",
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"type": "WEB",
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/26699"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/26987"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/27643"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"type": "WEB",
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/26444"
},
{
"type": "WEB",
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"type": "WEB",
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2007/3868"
}
],
"schema_version": "1.4.0",
"severity": []
}
CERTA-2007-AVI-499
Vulnerability from certfr_avis - Published: - Updated:None
Description
De très nombreuses vulnérabilités touchent les systèmes d'exploitation Mac OS X. L'exploitation de ces vulnérabilités permettent à une personne mal intentionnée d'exécuter des actions diverses, dont l'exécution de code arbitraire à distance.
Solution
Utiliser la mise à jour automatique ou se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | Apple Mac OS X version 10.3.9 et versions antérieures ; | ||
| Apple | N/A | Apple Mac OS X Server version 10.3.9 et versions antérieures ; | ||
| Apple | N/A | Apple Mac OS X Server version 10.4.10 et versions antérieures ; | ||
| Apple | N/A | Apple Mac OS X version 10.4.10 et versions antérieures ; |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Apple Mac OS X version 10.3.9 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Apple Mac OS X Server version 10.3.9 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Apple Mac OS X Server version 10.4.10 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Apple Mac OS X version 10.4.10 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe tr\u00e8s nombreuses vuln\u00e9rabilit\u00e9s touchent les syst\u00e8mes d\u0027exploitation\nMac OS X. L\u0027exploitation de ces vuln\u00e9rabilit\u00e9s permettent \u00e0 une personne\nmal intentionn\u00e9e d\u0027ex\u00e9cuter des actions diverses, dont l\u0027ex\u00e9cution de\ncode arbitraire \u00e0 distance.\n\n## Solution\n\nUtiliser la mise \u00e0 jour automatique ou se r\u00e9f\u00e9rer au bulletin de\ns\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section\nDocumentation).\n",
"cves": [
{
"name": "CVE-2007-4697",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4697"
},
{
"name": "CVE-2007-4693",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4693"
},
{
"name": "CVE-2007-0646",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-0646"
},
{
"name": "CVE-2005-0953",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-0953"
},
{
"name": "CVE-2007-4681",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4681"
},
{
"name": "CVE-2007-4685",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4685"
},
{
"name": "CVE-2007-4687",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4687"
},
{
"name": "CVE-2007-4678",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4678"
},
{
"name": "CVE-2007-3999",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3999"
},
{
"name": "CVE-2007-2926",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-2926"
},
{
"name": "CVE-2006-6127",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-6127"
},
{
"name": "CVE-2007-4698",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4698"
},
{
"name": "CVE-2007-4701",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4701"
},
{
"name": "CVE-2007-4267",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4267"
},
{
"name": "CVE-2007-3456",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3456"
},
{
"name": "CVE-2007-4679",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4679"
},
{
"name": "CVE-2007-4689",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4689"
},
{
"name": "CVE-2005-1260",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-1260"
},
{
"name": "CVE-2007-4268",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4268"
},
{
"name": "CVE-2007-4696",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4696"
},
{
"name": "CVE-2007-4269",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4269"
},
{
"name": "CVE-2007-4743",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4743"
},
{
"name": "CVE-2007-4680",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4680"
},
{
"name": "CVE-2007-4683",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4683"
},
{
"name": "CVE-2007-4671",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4671"
},
{
"name": "CVE-2007-4688",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4688"
},
{
"name": "CVE-2007-4691",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4691"
},
{
"name": "CVE-2007-3756",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3756"
},
{
"name": "CVE-2007-3749",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3749"
},
{
"name": "CVE-2007-4694",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4694"
},
{
"name": "CVE-2007-3758",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3758"
},
{
"name": "CVE-2007-4690",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4690"
},
{
"name": "CVE-2007-4684",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4684"
},
{
"name": "CVE-2007-4682",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4682"
},
{
"name": "CVE-2007-3760",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3760"
},
{
"name": "CVE-2007-4699",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4699"
},
{
"name": "CVE-2007-4686",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4686"
},
{
"name": "CVE-2007-4692",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4692"
},
{
"name": "CVE-2007-4695",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4695"
},
{
"name": "CVE-2007-4700",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4700"
},
{
"name": "CVE-2007-0464",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-0464"
}
],
"links": [
{
"title": "Bulletin de mise \u00e0 jour Apple :",
"url": "http://docs.info.apple.com/article.html?artnum=61798"
}
],
"reference": "CERTA-2007-AVI-499",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2007-11-15T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": null,
"title": "Multiples vuln\u00e9rabilit\u00e9s du syst\u00e8me Mac OS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de mise \u00e0 jour Apple du 14 novembre 2007",
"url": null
}
]
}
CERTA-2007-AVI-499
Vulnerability from certfr_avis - Published: - Updated:None
Description
De très nombreuses vulnérabilités touchent les systèmes d'exploitation Mac OS X. L'exploitation de ces vulnérabilités permettent à une personne mal intentionnée d'exécuter des actions diverses, dont l'exécution de code arbitraire à distance.
Solution
Utiliser la mise à jour automatique ou se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | Apple Mac OS X version 10.3.9 et versions antérieures ; | ||
| Apple | N/A | Apple Mac OS X Server version 10.3.9 et versions antérieures ; | ||
| Apple | N/A | Apple Mac OS X Server version 10.4.10 et versions antérieures ; | ||
| Apple | N/A | Apple Mac OS X version 10.4.10 et versions antérieures ; |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Apple Mac OS X version 10.3.9 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Apple Mac OS X Server version 10.3.9 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Apple Mac OS X Server version 10.4.10 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Apple Mac OS X version 10.4.10 et versions ant\u00e9rieures ;",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe tr\u00e8s nombreuses vuln\u00e9rabilit\u00e9s touchent les syst\u00e8mes d\u0027exploitation\nMac OS X. L\u0027exploitation de ces vuln\u00e9rabilit\u00e9s permettent \u00e0 une personne\nmal intentionn\u00e9e d\u0027ex\u00e9cuter des actions diverses, dont l\u0027ex\u00e9cution de\ncode arbitraire \u00e0 distance.\n\n## Solution\n\nUtiliser la mise \u00e0 jour automatique ou se r\u00e9f\u00e9rer au bulletin de\ns\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section\nDocumentation).\n",
"cves": [
{
"name": "CVE-2007-4697",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4697"
},
{
"name": "CVE-2007-4693",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4693"
},
{
"name": "CVE-2007-0646",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-0646"
},
{
"name": "CVE-2005-0953",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-0953"
},
{
"name": "CVE-2007-4681",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4681"
},
{
"name": "CVE-2007-4685",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4685"
},
{
"name": "CVE-2007-4687",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4687"
},
{
"name": "CVE-2007-4678",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4678"
},
{
"name": "CVE-2007-3999",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3999"
},
{
"name": "CVE-2007-2926",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-2926"
},
{
"name": "CVE-2006-6127",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-6127"
},
{
"name": "CVE-2007-4698",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4698"
},
{
"name": "CVE-2007-4701",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4701"
},
{
"name": "CVE-2007-4267",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4267"
},
{
"name": "CVE-2007-3456",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3456"
},
{
"name": "CVE-2007-4679",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4679"
},
{
"name": "CVE-2007-4689",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4689"
},
{
"name": "CVE-2005-1260",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-1260"
},
{
"name": "CVE-2007-4268",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4268"
},
{
"name": "CVE-2007-4696",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4696"
},
{
"name": "CVE-2007-4269",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4269"
},
{
"name": "CVE-2007-4743",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4743"
},
{
"name": "CVE-2007-4680",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4680"
},
{
"name": "CVE-2007-4683",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4683"
},
{
"name": "CVE-2007-4671",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4671"
},
{
"name": "CVE-2007-4688",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4688"
},
{
"name": "CVE-2007-4691",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4691"
},
{
"name": "CVE-2007-3756",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3756"
},
{
"name": "CVE-2007-3749",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3749"
},
{
"name": "CVE-2007-4694",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4694"
},
{
"name": "CVE-2007-3758",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3758"
},
{
"name": "CVE-2007-4690",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4690"
},
{
"name": "CVE-2007-4684",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4684"
},
{
"name": "CVE-2007-4682",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4682"
},
{
"name": "CVE-2007-3760",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-3760"
},
{
"name": "CVE-2007-4699",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4699"
},
{
"name": "CVE-2007-4686",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4686"
},
{
"name": "CVE-2007-4692",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4692"
},
{
"name": "CVE-2007-4695",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4695"
},
{
"name": "CVE-2007-4700",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4700"
},
{
"name": "CVE-2007-0464",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-0464"
}
],
"links": [
{
"title": "Bulletin de mise \u00e0 jour Apple :",
"url": "http://docs.info.apple.com/article.html?artnum=61798"
}
],
"reference": "CERTA-2007-AVI-499",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2007-11-15T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "D\u00e9ni de service"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": null,
"title": "Multiples vuln\u00e9rabilit\u00e9s du syst\u00e8me Mac OS X",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de mise \u00e0 jour Apple du 14 novembre 2007",
"url": null
}
]
}
RHSA-2007_0892
Vulnerability from csaf_redhat - Published: 2007-09-07 12:14 - Updated: 2024-11-22 01:27Summary
Red Hat Security Advisory: krb5 security update
Notes
Topic
Updated krb5 packages that correct a security flaw are now available for
Red Hat Enterprise Linux 5.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Kerberos is a network authentication system which allows clients and
servers to authenticate to each other through use of symmetric encryption
and a trusted third party, the KDC. kadmind is the KADM5 administration
server.
The MIT Kerberos Team discovered a problem with the originally published
patch for svc_auth_gss.c (CVE-2007-3999). A remote unauthenticated
attacker who can access kadmind could trigger this flaw and cause kadmind
to crash. On Red Hat Enterprise Linux 5 it is not possible to exploit this
flaw to run arbitrary code as the overflow is blocked by FORTIFY_SOURCE.
(CVE-2007-4743)
This issue did not affect the versions of Kerberos distributed with Red
Hat Enterprise Linux 2.1, 3, or 4.
Users of krb5-server are advised to update to these erratum packages which
contain a corrected backported fix for this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated krb5 packages that correct a security flaw are now available for\nRed Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.",
"title": "Topic"
},
{
"category": "general",
"text": "Kerberos is a network authentication system which allows clients and\nservers to authenticate to each other through use of symmetric encryption\nand a trusted third party, the KDC. kadmind is the KADM5 administration\nserver.\n\nThe MIT Kerberos Team discovered a problem with the originally published\npatch for svc_auth_gss.c (CVE-2007-3999). A remote unauthenticated\nattacker who can access kadmind could trigger this flaw and cause kadmind\nto crash. On Red Hat Enterprise Linux 5 it is not possible to exploit this\nflaw to run arbitrary code as the overflow is blocked by FORTIFY_SOURCE.\n(CVE-2007-4743)\n\nThis issue did not affect the versions of Kerberos distributed with Red\nHat Enterprise Linux 2.1, 3, or 4.\n\nUsers of krb5-server are advised to update to these erratum packages which\ncontain a corrected backported fix for this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2007:0892",
"url": "https://access.redhat.com/errata/RHSA-2007:0892"
},
{
"category": "external",
"summary": "http://www.redhat.com/security/updates/classification/#important",
"url": "http://www.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "281561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=281561"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0892.json"
}
],
"title": "Red Hat Security Advisory: krb5 security update",
"tracking": {
"current_release_date": "2024-11-22T01:27:31+00:00",
"generator": {
"date": "2024-11-22T01:27:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2007:0892",
"initial_release_date": "2007-09-07T12:14:00+00:00",
"revision_history": [
{
"date": "2007-09-07T12:14:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2007-09-07T08:14:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T01:27:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.x86_64",
"product": {
"name": "krb5-devel-0:1.5-29.x86_64",
"product_id": "krb5-devel-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.x86_64",
"product": {
"name": "krb5-debuginfo-0:1.5-29.x86_64",
"product_id": "krb5-debuginfo-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.x86_64",
"product": {
"name": "krb5-server-0:1.5-29.x86_64",
"product_id": "krb5-server-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.x86_64",
"product": {
"name": "krb5-libs-0:1.5-29.x86_64",
"product_id": "krb5-libs-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.x86_64",
"product": {
"name": "krb5-workstation-0:1.5-29.x86_64",
"product_id": "krb5-workstation-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.i386",
"product": {
"name": "krb5-devel-0:1.5-29.i386",
"product_id": "krb5-devel-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.i386",
"product": {
"name": "krb5-debuginfo-0:1.5-29.i386",
"product_id": "krb5-debuginfo-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.i386",
"product": {
"name": "krb5-server-0:1.5-29.i386",
"product_id": "krb5-server-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.i386",
"product": {
"name": "krb5-libs-0:1.5-29.i386",
"product_id": "krb5-libs-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.i386",
"product": {
"name": "krb5-workstation-0:1.5-29.i386",
"product_id": "krb5-workstation-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-0:1.5-29.src",
"product": {
"name": "krb5-0:1.5-29.src",
"product_id": "krb5-0:1.5-29.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5@1.5-29?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.ia64",
"product": {
"name": "krb5-devel-0:1.5-29.ia64",
"product_id": "krb5-devel-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.ia64",
"product": {
"name": "krb5-libs-0:1.5-29.ia64",
"product_id": "krb5-libs-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.ia64",
"product": {
"name": "krb5-workstation-0:1.5-29.ia64",
"product_id": "krb5-workstation-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.ia64",
"product": {
"name": "krb5-debuginfo-0:1.5-29.ia64",
"product_id": "krb5-debuginfo-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.ia64",
"product": {
"name": "krb5-server-0:1.5-29.ia64",
"product_id": "krb5-server-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.ppc64",
"product": {
"name": "krb5-devel-0:1.5-29.ppc64",
"product_id": "krb5-devel-0:1.5-29.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.ppc64",
"product": {
"name": "krb5-libs-0:1.5-29.ppc64",
"product_id": "krb5-libs-0:1.5-29.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.ppc64",
"product": {
"name": "krb5-debuginfo-0:1.5-29.ppc64",
"product_id": "krb5-debuginfo-0:1.5-29.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.ppc",
"product": {
"name": "krb5-devel-0:1.5-29.ppc",
"product_id": "krb5-devel-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.ppc",
"product": {
"name": "krb5-libs-0:1.5-29.ppc",
"product_id": "krb5-libs-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.ppc",
"product": {
"name": "krb5-workstation-0:1.5-29.ppc",
"product_id": "krb5-workstation-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.ppc",
"product": {
"name": "krb5-debuginfo-0:1.5-29.ppc",
"product_id": "krb5-debuginfo-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.ppc",
"product": {
"name": "krb5-server-0:1.5-29.ppc",
"product_id": "krb5-server-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.s390x",
"product": {
"name": "krb5-devel-0:1.5-29.s390x",
"product_id": "krb5-devel-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.s390x",
"product": {
"name": "krb5-libs-0:1.5-29.s390x",
"product_id": "krb5-libs-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.s390x",
"product": {
"name": "krb5-workstation-0:1.5-29.s390x",
"product_id": "krb5-workstation-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.s390x",
"product": {
"name": "krb5-debuginfo-0:1.5-29.s390x",
"product_id": "krb5-debuginfo-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.s390x",
"product": {
"name": "krb5-server-0:1.5-29.s390x",
"product_id": "krb5-server-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.s390",
"product": {
"name": "krb5-devel-0:1.5-29.s390",
"product_id": "krb5-devel-0:1.5-29.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=s390"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.s390",
"product": {
"name": "krb5-libs-0:1.5-29.s390",
"product_id": "krb5-libs-0:1.5-29.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=s390"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.s390",
"product": {
"name": "krb5-debuginfo-0:1.5-29.s390",
"product_id": "krb5-debuginfo-0:1.5-29.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-0:1.5-29.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-0:1.5-29.src"
},
"product_reference": "krb5-0:1.5-29.src",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.i386"
},
"product_reference": "krb5-debuginfo-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.ia64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.s390"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.s390x"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.x86_64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.i386"
},
"product_reference": "krb5-devel-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.ia64"
},
"product_reference": "krb5-devel-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.ppc"
},
"product_reference": "krb5-devel-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.ppc64"
},
"product_reference": "krb5-devel-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.s390"
},
"product_reference": "krb5-devel-0:1.5-29.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.s390x"
},
"product_reference": "krb5-devel-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.x86_64"
},
"product_reference": "krb5-devel-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.i386"
},
"product_reference": "krb5-libs-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.ia64"
},
"product_reference": "krb5-libs-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.ppc"
},
"product_reference": "krb5-libs-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.ppc64"
},
"product_reference": "krb5-libs-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.s390"
},
"product_reference": "krb5-libs-0:1.5-29.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.s390x"
},
"product_reference": "krb5-libs-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.x86_64"
},
"product_reference": "krb5-libs-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.i386"
},
"product_reference": "krb5-server-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.ia64"
},
"product_reference": "krb5-server-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.ppc"
},
"product_reference": "krb5-server-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.s390x"
},
"product_reference": "krb5-server-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.x86_64"
},
"product_reference": "krb5-server-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.i386"
},
"product_reference": "krb5-workstation-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.ia64"
},
"product_reference": "krb5-workstation-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.ppc"
},
"product_reference": "krb5-workstation-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.s390x"
},
"product_reference": "krb5-workstation-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.x86_64"
},
"product_reference": "krb5-workstation-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-0:1.5-29.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-0:1.5-29.src"
},
"product_reference": "krb5-0:1.5-29.src",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.i386"
},
"product_reference": "krb5-debuginfo-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.ia64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.ppc"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.ppc64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.s390"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.s390x"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.x86_64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.i386"
},
"product_reference": "krb5-devel-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.ia64"
},
"product_reference": "krb5-devel-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.ppc"
},
"product_reference": "krb5-devel-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.ppc64"
},
"product_reference": "krb5-devel-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.s390"
},
"product_reference": "krb5-devel-0:1.5-29.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.s390x"
},
"product_reference": "krb5-devel-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.x86_64"
},
"product_reference": "krb5-devel-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.i386"
},
"product_reference": "krb5-libs-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.ia64"
},
"product_reference": "krb5-libs-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.ppc"
},
"product_reference": "krb5-libs-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.ppc64"
},
"product_reference": "krb5-libs-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.s390"
},
"product_reference": "krb5-libs-0:1.5-29.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.s390x"
},
"product_reference": "krb5-libs-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.x86_64"
},
"product_reference": "krb5-libs-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.i386"
},
"product_reference": "krb5-server-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.ia64"
},
"product_reference": "krb5-server-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.ppc"
},
"product_reference": "krb5-server-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.s390x"
},
"product_reference": "krb5-server-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.x86_64"
},
"product_reference": "krb5-server-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.i386"
},
"product_reference": "krb5-workstation-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.ia64"
},
"product_reference": "krb5-workstation-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.ppc"
},
"product_reference": "krb5-workstation-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.s390x"
},
"product_reference": "krb5-workstation-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.x86_64"
},
"product_reference": "krb5-workstation-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-0:1.5-29.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-0:1.5-29.src"
},
"product_reference": "krb5-0:1.5-29.src",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.i386"
},
"product_reference": "krb5-debuginfo-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.ia64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.ppc"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.ppc64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.s390"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.s390x"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.x86_64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.i386"
},
"product_reference": "krb5-devel-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.ia64"
},
"product_reference": "krb5-devel-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.ppc"
},
"product_reference": "krb5-devel-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.ppc64"
},
"product_reference": "krb5-devel-0:1.5-29.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.s390"
},
"product_reference": "krb5-devel-0:1.5-29.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.s390x"
},
"product_reference": "krb5-devel-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.x86_64"
},
"product_reference": "krb5-devel-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.i386"
},
"product_reference": "krb5-libs-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.ia64"
},
"product_reference": "krb5-libs-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.ppc"
},
"product_reference": "krb5-libs-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.ppc64"
},
"product_reference": "krb5-libs-0:1.5-29.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.s390"
},
"product_reference": "krb5-libs-0:1.5-29.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.s390x"
},
"product_reference": "krb5-libs-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.x86_64"
},
"product_reference": "krb5-libs-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.i386"
},
"product_reference": "krb5-server-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.ia64"
},
"product_reference": "krb5-server-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.ppc"
},
"product_reference": "krb5-server-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.s390x"
},
"product_reference": "krb5-server-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.x86_64"
},
"product_reference": "krb5-server-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.i386"
},
"product_reference": "krb5-workstation-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.ia64"
},
"product_reference": "krb5-workstation-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.ppc"
},
"product_reference": "krb5-workstation-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.s390x"
},
"product_reference": "krb5-workstation-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.x86_64"
},
"product_reference": "krb5-workstation-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-4743",
"discovery_date": "2007-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "281561"
}
],
"notes": [
{
"category": "description",
"text": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "krb5 incomplete fix for CVE-2007-3999",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:krb5-0:1.5-29.src",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.i386",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ia64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390x",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.x86_64",
"5Client-Workstation:krb5-devel-0:1.5-29.i386",
"5Client-Workstation:krb5-devel-0:1.5-29.ia64",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc64",
"5Client-Workstation:krb5-devel-0:1.5-29.s390",
"5Client-Workstation:krb5-devel-0:1.5-29.s390x",
"5Client-Workstation:krb5-devel-0:1.5-29.x86_64",
"5Client-Workstation:krb5-libs-0:1.5-29.i386",
"5Client-Workstation:krb5-libs-0:1.5-29.ia64",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc64",
"5Client-Workstation:krb5-libs-0:1.5-29.s390",
"5Client-Workstation:krb5-libs-0:1.5-29.s390x",
"5Client-Workstation:krb5-libs-0:1.5-29.x86_64",
"5Client-Workstation:krb5-server-0:1.5-29.i386",
"5Client-Workstation:krb5-server-0:1.5-29.ia64",
"5Client-Workstation:krb5-server-0:1.5-29.ppc",
"5Client-Workstation:krb5-server-0:1.5-29.s390x",
"5Client-Workstation:krb5-server-0:1.5-29.x86_64",
"5Client-Workstation:krb5-workstation-0:1.5-29.i386",
"5Client-Workstation:krb5-workstation-0:1.5-29.ia64",
"5Client-Workstation:krb5-workstation-0:1.5-29.ppc",
"5Client-Workstation:krb5-workstation-0:1.5-29.s390x",
"5Client-Workstation:krb5-workstation-0:1.5-29.x86_64",
"5Client:krb5-0:1.5-29.src",
"5Client:krb5-debuginfo-0:1.5-29.i386",
"5Client:krb5-debuginfo-0:1.5-29.ia64",
"5Client:krb5-debuginfo-0:1.5-29.ppc",
"5Client:krb5-debuginfo-0:1.5-29.ppc64",
"5Client:krb5-debuginfo-0:1.5-29.s390",
"5Client:krb5-debuginfo-0:1.5-29.s390x",
"5Client:krb5-debuginfo-0:1.5-29.x86_64",
"5Client:krb5-devel-0:1.5-29.i386",
"5Client:krb5-devel-0:1.5-29.ia64",
"5Client:krb5-devel-0:1.5-29.ppc",
"5Client:krb5-devel-0:1.5-29.ppc64",
"5Client:krb5-devel-0:1.5-29.s390",
"5Client:krb5-devel-0:1.5-29.s390x",
"5Client:krb5-devel-0:1.5-29.x86_64",
"5Client:krb5-libs-0:1.5-29.i386",
"5Client:krb5-libs-0:1.5-29.ia64",
"5Client:krb5-libs-0:1.5-29.ppc",
"5Client:krb5-libs-0:1.5-29.ppc64",
"5Client:krb5-libs-0:1.5-29.s390",
"5Client:krb5-libs-0:1.5-29.s390x",
"5Client:krb5-libs-0:1.5-29.x86_64",
"5Client:krb5-server-0:1.5-29.i386",
"5Client:krb5-server-0:1.5-29.ia64",
"5Client:krb5-server-0:1.5-29.ppc",
"5Client:krb5-server-0:1.5-29.s390x",
"5Client:krb5-server-0:1.5-29.x86_64",
"5Client:krb5-workstation-0:1.5-29.i386",
"5Client:krb5-workstation-0:1.5-29.ia64",
"5Client:krb5-workstation-0:1.5-29.ppc",
"5Client:krb5-workstation-0:1.5-29.s390x",
"5Client:krb5-workstation-0:1.5-29.x86_64",
"5Server:krb5-0:1.5-29.src",
"5Server:krb5-debuginfo-0:1.5-29.i386",
"5Server:krb5-debuginfo-0:1.5-29.ia64",
"5Server:krb5-debuginfo-0:1.5-29.ppc",
"5Server:krb5-debuginfo-0:1.5-29.ppc64",
"5Server:krb5-debuginfo-0:1.5-29.s390",
"5Server:krb5-debuginfo-0:1.5-29.s390x",
"5Server:krb5-debuginfo-0:1.5-29.x86_64",
"5Server:krb5-devel-0:1.5-29.i386",
"5Server:krb5-devel-0:1.5-29.ia64",
"5Server:krb5-devel-0:1.5-29.ppc",
"5Server:krb5-devel-0:1.5-29.ppc64",
"5Server:krb5-devel-0:1.5-29.s390",
"5Server:krb5-devel-0:1.5-29.s390x",
"5Server:krb5-devel-0:1.5-29.x86_64",
"5Server:krb5-libs-0:1.5-29.i386",
"5Server:krb5-libs-0:1.5-29.ia64",
"5Server:krb5-libs-0:1.5-29.ppc",
"5Server:krb5-libs-0:1.5-29.ppc64",
"5Server:krb5-libs-0:1.5-29.s390",
"5Server:krb5-libs-0:1.5-29.s390x",
"5Server:krb5-libs-0:1.5-29.x86_64",
"5Server:krb5-server-0:1.5-29.i386",
"5Server:krb5-server-0:1.5-29.ia64",
"5Server:krb5-server-0:1.5-29.ppc",
"5Server:krb5-server-0:1.5-29.s390x",
"5Server:krb5-server-0:1.5-29.x86_64",
"5Server:krb5-workstation-0:1.5-29.i386",
"5Server:krb5-workstation-0:1.5-29.ia64",
"5Server:krb5-workstation-0:1.5-29.ppc",
"5Server:krb5-workstation-0:1.5-29.s390x",
"5Server:krb5-workstation-0:1.5-29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2007-4743"
},
{
"category": "external",
"summary": "RHBZ#281561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=281561"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2007-4743",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4743"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-4743",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4743"
}
],
"release_date": "2007-09-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2007-09-07T12:14:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
"product_ids": [
"5Client-Workstation:krb5-0:1.5-29.src",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.i386",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ia64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390x",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.x86_64",
"5Client-Workstation:krb5-devel-0:1.5-29.i386",
"5Client-Workstation:krb5-devel-0:1.5-29.ia64",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc64",
"5Client-Workstation:krb5-devel-0:1.5-29.s390",
"5Client-Workstation:krb5-devel-0:1.5-29.s390x",
"5Client-Workstation:krb5-devel-0:1.5-29.x86_64",
"5Client-Workstation:krb5-libs-0:1.5-29.i386",
"5Client-Workstation:krb5-libs-0:1.5-29.ia64",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc64",
"5Client-Workstation:krb5-libs-0:1.5-29.s390",
"5Client-Workstation:krb5-libs-0:1.5-29.s390x",
"5Client-Workstation:krb5-libs-0:1.5-29.x86_64",
"5Client-Workstation:krb5-server-0:1.5-29.i386",
"5Client-Workstation:krb5-server-0:1.5-29.ia64",
"5Client-Workstation:krb5-server-0:1.5-29.ppc",
"5Client-Workstation:krb5-server-0:1.5-29.s390x",
"5Client-Workstation:krb5-server-0:1.5-29.x86_64",
"5Client-Workstation:krb5-workstation-0:1.5-29.i386",
"5Client-Workstation:krb5-workstation-0:1.5-29.ia64",
"5Client-Workstation:krb5-workstation-0:1.5-29.ppc",
"5Client-Workstation:krb5-workstation-0:1.5-29.s390x",
"5Client-Workstation:krb5-workstation-0:1.5-29.x86_64",
"5Client:krb5-0:1.5-29.src",
"5Client:krb5-debuginfo-0:1.5-29.i386",
"5Client:krb5-debuginfo-0:1.5-29.ia64",
"5Client:krb5-debuginfo-0:1.5-29.ppc",
"5Client:krb5-debuginfo-0:1.5-29.ppc64",
"5Client:krb5-debuginfo-0:1.5-29.s390",
"5Client:krb5-debuginfo-0:1.5-29.s390x",
"5Client:krb5-debuginfo-0:1.5-29.x86_64",
"5Client:krb5-devel-0:1.5-29.i386",
"5Client:krb5-devel-0:1.5-29.ia64",
"5Client:krb5-devel-0:1.5-29.ppc",
"5Client:krb5-devel-0:1.5-29.ppc64",
"5Client:krb5-devel-0:1.5-29.s390",
"5Client:krb5-devel-0:1.5-29.s390x",
"5Client:krb5-devel-0:1.5-29.x86_64",
"5Client:krb5-libs-0:1.5-29.i386",
"5Client:krb5-libs-0:1.5-29.ia64",
"5Client:krb5-libs-0:1.5-29.ppc",
"5Client:krb5-libs-0:1.5-29.ppc64",
"5Client:krb5-libs-0:1.5-29.s390",
"5Client:krb5-libs-0:1.5-29.s390x",
"5Client:krb5-libs-0:1.5-29.x86_64",
"5Client:krb5-server-0:1.5-29.i386",
"5Client:krb5-server-0:1.5-29.ia64",
"5Client:krb5-server-0:1.5-29.ppc",
"5Client:krb5-server-0:1.5-29.s390x",
"5Client:krb5-server-0:1.5-29.x86_64",
"5Client:krb5-workstation-0:1.5-29.i386",
"5Client:krb5-workstation-0:1.5-29.ia64",
"5Client:krb5-workstation-0:1.5-29.ppc",
"5Client:krb5-workstation-0:1.5-29.s390x",
"5Client:krb5-workstation-0:1.5-29.x86_64",
"5Server:krb5-0:1.5-29.src",
"5Server:krb5-debuginfo-0:1.5-29.i386",
"5Server:krb5-debuginfo-0:1.5-29.ia64",
"5Server:krb5-debuginfo-0:1.5-29.ppc",
"5Server:krb5-debuginfo-0:1.5-29.ppc64",
"5Server:krb5-debuginfo-0:1.5-29.s390",
"5Server:krb5-debuginfo-0:1.5-29.s390x",
"5Server:krb5-debuginfo-0:1.5-29.x86_64",
"5Server:krb5-devel-0:1.5-29.i386",
"5Server:krb5-devel-0:1.5-29.ia64",
"5Server:krb5-devel-0:1.5-29.ppc",
"5Server:krb5-devel-0:1.5-29.ppc64",
"5Server:krb5-devel-0:1.5-29.s390",
"5Server:krb5-devel-0:1.5-29.s390x",
"5Server:krb5-devel-0:1.5-29.x86_64",
"5Server:krb5-libs-0:1.5-29.i386",
"5Server:krb5-libs-0:1.5-29.ia64",
"5Server:krb5-libs-0:1.5-29.ppc",
"5Server:krb5-libs-0:1.5-29.ppc64",
"5Server:krb5-libs-0:1.5-29.s390",
"5Server:krb5-libs-0:1.5-29.s390x",
"5Server:krb5-libs-0:1.5-29.x86_64",
"5Server:krb5-server-0:1.5-29.i386",
"5Server:krb5-server-0:1.5-29.ia64",
"5Server:krb5-server-0:1.5-29.ppc",
"5Server:krb5-server-0:1.5-29.s390x",
"5Server:krb5-server-0:1.5-29.x86_64",
"5Server:krb5-workstation-0:1.5-29.i386",
"5Server:krb5-workstation-0:1.5-29.ia64",
"5Server:krb5-workstation-0:1.5-29.ppc",
"5Server:krb5-workstation-0:1.5-29.s390x",
"5Server:krb5-workstation-0:1.5-29.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2007:0892"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "krb5 incomplete fix for CVE-2007-3999"
}
]
}
RHSA-2007:0892
Vulnerability from csaf_redhat - Published: 2007-09-07 12:14 - Updated: 2025-11-21 17:32Summary
Red Hat Security Advisory: krb5 security update
Notes
Topic
Updated krb5 packages that correct a security flaw are now available for
Red Hat Enterprise Linux 5.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
Details
Kerberos is a network authentication system which allows clients and
servers to authenticate to each other through use of symmetric encryption
and a trusted third party, the KDC. kadmind is the KADM5 administration
server.
The MIT Kerberos Team discovered a problem with the originally published
patch for svc_auth_gss.c (CVE-2007-3999). A remote unauthenticated
attacker who can access kadmind could trigger this flaw and cause kadmind
to crash. On Red Hat Enterprise Linux 5 it is not possible to exploit this
flaw to run arbitrary code as the overflow is blocked by FORTIFY_SOURCE.
(CVE-2007-4743)
This issue did not affect the versions of Kerberos distributed with Red
Hat Enterprise Linux 2.1, 3, or 4.
Users of krb5-server are advised to update to these erratum packages which
contain a corrected backported fix for this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated krb5 packages that correct a security flaw are now available for\nRed Hat Enterprise Linux 5.\n\nThis update has been rated as having important security impact by the Red\nHat Security Response Team.",
"title": "Topic"
},
{
"category": "general",
"text": "Kerberos is a network authentication system which allows clients and\nservers to authenticate to each other through use of symmetric encryption\nand a trusted third party, the KDC. kadmind is the KADM5 administration\nserver.\n\nThe MIT Kerberos Team discovered a problem with the originally published\npatch for svc_auth_gss.c (CVE-2007-3999). A remote unauthenticated\nattacker who can access kadmind could trigger this flaw and cause kadmind\nto crash. On Red Hat Enterprise Linux 5 it is not possible to exploit this\nflaw to run arbitrary code as the overflow is blocked by FORTIFY_SOURCE.\n(CVE-2007-4743)\n\nThis issue did not affect the versions of Kerberos distributed with Red\nHat Enterprise Linux 2.1, 3, or 4.\n\nUsers of krb5-server are advised to update to these erratum packages which\ncontain a corrected backported fix for this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2007:0892",
"url": "https://access.redhat.com/errata/RHSA-2007:0892"
},
{
"category": "external",
"summary": "http://www.redhat.com/security/updates/classification/#important",
"url": "http://www.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "281561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=281561"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0892.json"
}
],
"title": "Red Hat Security Advisory: krb5 security update",
"tracking": {
"current_release_date": "2025-11-21T17:32:16+00:00",
"generator": {
"date": "2025-11-21T17:32:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2007:0892",
"initial_release_date": "2007-09-07T12:14:00+00:00",
"revision_history": [
{
"date": "2007-09-07T12:14:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2007-09-07T08:14:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:32:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product": {
"name": "Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.x86_64",
"product": {
"name": "krb5-devel-0:1.5-29.x86_64",
"product_id": "krb5-devel-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.x86_64",
"product": {
"name": "krb5-debuginfo-0:1.5-29.x86_64",
"product_id": "krb5-debuginfo-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.x86_64",
"product": {
"name": "krb5-server-0:1.5-29.x86_64",
"product_id": "krb5-server-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.x86_64",
"product": {
"name": "krb5-libs-0:1.5-29.x86_64",
"product_id": "krb5-libs-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.x86_64",
"product": {
"name": "krb5-workstation-0:1.5-29.x86_64",
"product_id": "krb5-workstation-0:1.5-29.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.i386",
"product": {
"name": "krb5-devel-0:1.5-29.i386",
"product_id": "krb5-devel-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.i386",
"product": {
"name": "krb5-debuginfo-0:1.5-29.i386",
"product_id": "krb5-debuginfo-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.i386",
"product": {
"name": "krb5-server-0:1.5-29.i386",
"product_id": "krb5-server-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.i386",
"product": {
"name": "krb5-libs-0:1.5-29.i386",
"product_id": "krb5-libs-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=i386"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.i386",
"product": {
"name": "krb5-workstation-0:1.5-29.i386",
"product_id": "krb5-workstation-0:1.5-29.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-0:1.5-29.src",
"product": {
"name": "krb5-0:1.5-29.src",
"product_id": "krb5-0:1.5-29.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5@1.5-29?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.ia64",
"product": {
"name": "krb5-devel-0:1.5-29.ia64",
"product_id": "krb5-devel-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.ia64",
"product": {
"name": "krb5-libs-0:1.5-29.ia64",
"product_id": "krb5-libs-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.ia64",
"product": {
"name": "krb5-workstation-0:1.5-29.ia64",
"product_id": "krb5-workstation-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.ia64",
"product": {
"name": "krb5-debuginfo-0:1.5-29.ia64",
"product_id": "krb5-debuginfo-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.ia64",
"product": {
"name": "krb5-server-0:1.5-29.ia64",
"product_id": "krb5-server-0:1.5-29.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.ppc64",
"product": {
"name": "krb5-devel-0:1.5-29.ppc64",
"product_id": "krb5-devel-0:1.5-29.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.ppc64",
"product": {
"name": "krb5-libs-0:1.5-29.ppc64",
"product_id": "krb5-libs-0:1.5-29.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.ppc64",
"product": {
"name": "krb5-debuginfo-0:1.5-29.ppc64",
"product_id": "krb5-debuginfo-0:1.5-29.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.ppc",
"product": {
"name": "krb5-devel-0:1.5-29.ppc",
"product_id": "krb5-devel-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.ppc",
"product": {
"name": "krb5-libs-0:1.5-29.ppc",
"product_id": "krb5-libs-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.ppc",
"product": {
"name": "krb5-workstation-0:1.5-29.ppc",
"product_id": "krb5-workstation-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.ppc",
"product": {
"name": "krb5-debuginfo-0:1.5-29.ppc",
"product_id": "krb5-debuginfo-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.ppc",
"product": {
"name": "krb5-server-0:1.5-29.ppc",
"product_id": "krb5-server-0:1.5-29.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.s390x",
"product": {
"name": "krb5-devel-0:1.5-29.s390x",
"product_id": "krb5-devel-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.s390x",
"product": {
"name": "krb5-libs-0:1.5-29.s390x",
"product_id": "krb5-libs-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-workstation-0:1.5-29.s390x",
"product": {
"name": "krb5-workstation-0:1.5-29.s390x",
"product_id": "krb5-workstation-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-workstation@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.s390x",
"product": {
"name": "krb5-debuginfo-0:1.5-29.s390x",
"product_id": "krb5-debuginfo-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "krb5-server-0:1.5-29.s390x",
"product": {
"name": "krb5-server-0:1.5-29.s390x",
"product_id": "krb5-server-0:1.5-29.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-server@1.5-29?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "krb5-devel-0:1.5-29.s390",
"product": {
"name": "krb5-devel-0:1.5-29.s390",
"product_id": "krb5-devel-0:1.5-29.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-devel@1.5-29?arch=s390"
}
}
},
{
"category": "product_version",
"name": "krb5-libs-0:1.5-29.s390",
"product": {
"name": "krb5-libs-0:1.5-29.s390",
"product_id": "krb5-libs-0:1.5-29.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-libs@1.5-29?arch=s390"
}
}
},
{
"category": "product_version",
"name": "krb5-debuginfo-0:1.5-29.s390",
"product": {
"name": "krb5-debuginfo-0:1.5-29.s390",
"product_id": "krb5-debuginfo-0:1.5-29.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/krb5-debuginfo@1.5-29?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-0:1.5-29.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-0:1.5-29.src"
},
"product_reference": "krb5-0:1.5-29.src",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.i386"
},
"product_reference": "krb5-debuginfo-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.ia64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.s390"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.s390x"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-debuginfo-0:1.5-29.x86_64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.i386"
},
"product_reference": "krb5-devel-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.ia64"
},
"product_reference": "krb5-devel-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.ppc"
},
"product_reference": "krb5-devel-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.ppc64"
},
"product_reference": "krb5-devel-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.s390"
},
"product_reference": "krb5-devel-0:1.5-29.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.s390x"
},
"product_reference": "krb5-devel-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-devel-0:1.5-29.x86_64"
},
"product_reference": "krb5-devel-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.i386"
},
"product_reference": "krb5-libs-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.ia64"
},
"product_reference": "krb5-libs-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.ppc"
},
"product_reference": "krb5-libs-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.ppc64"
},
"product_reference": "krb5-libs-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.s390"
},
"product_reference": "krb5-libs-0:1.5-29.s390",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.s390x"
},
"product_reference": "krb5-libs-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-libs-0:1.5-29.x86_64"
},
"product_reference": "krb5-libs-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.i386"
},
"product_reference": "krb5-server-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.ia64"
},
"product_reference": "krb5-server-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.ppc"
},
"product_reference": "krb5-server-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.s390x"
},
"product_reference": "krb5-server-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-server-0:1.5-29.x86_64"
},
"product_reference": "krb5-server-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.i386"
},
"product_reference": "krb5-workstation-0:1.5-29.i386",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.ia64"
},
"product_reference": "krb5-workstation-0:1.5-29.ia64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.ppc"
},
"product_reference": "krb5-workstation-0:1.5-29.ppc",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.s390x"
},
"product_reference": "krb5-workstation-0:1.5-29.s390x",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)",
"product_id": "5Client-Workstation:krb5-workstation-0:1.5-29.x86_64"
},
"product_reference": "krb5-workstation-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client-Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-0:1.5-29.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-0:1.5-29.src"
},
"product_reference": "krb5-0:1.5-29.src",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.i386"
},
"product_reference": "krb5-debuginfo-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.ia64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.ppc"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.ppc64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.s390"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.s390x"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-debuginfo-0:1.5-29.x86_64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.i386"
},
"product_reference": "krb5-devel-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.ia64"
},
"product_reference": "krb5-devel-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.ppc"
},
"product_reference": "krb5-devel-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.ppc64"
},
"product_reference": "krb5-devel-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.s390"
},
"product_reference": "krb5-devel-0:1.5-29.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.s390x"
},
"product_reference": "krb5-devel-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-devel-0:1.5-29.x86_64"
},
"product_reference": "krb5-devel-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.i386"
},
"product_reference": "krb5-libs-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.ia64"
},
"product_reference": "krb5-libs-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.ppc"
},
"product_reference": "krb5-libs-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.ppc64"
},
"product_reference": "krb5-libs-0:1.5-29.ppc64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.s390"
},
"product_reference": "krb5-libs-0:1.5-29.s390",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.s390x"
},
"product_reference": "krb5-libs-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-libs-0:1.5-29.x86_64"
},
"product_reference": "krb5-libs-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.i386"
},
"product_reference": "krb5-server-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.ia64"
},
"product_reference": "krb5-server-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.ppc"
},
"product_reference": "krb5-server-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.s390x"
},
"product_reference": "krb5-server-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-server-0:1.5-29.x86_64"
},
"product_reference": "krb5-server-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.i386"
},
"product_reference": "krb5-workstation-0:1.5-29.i386",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.ia64"
},
"product_reference": "krb5-workstation-0:1.5-29.ia64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.ppc"
},
"product_reference": "krb5-workstation-0:1.5-29.ppc",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.s390x"
},
"product_reference": "krb5-workstation-0:1.5-29.s390x",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
"product_id": "5Client:krb5-workstation-0:1.5-29.x86_64"
},
"product_reference": "krb5-workstation-0:1.5-29.x86_64",
"relates_to_product_reference": "5Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-0:1.5-29.src as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-0:1.5-29.src"
},
"product_reference": "krb5-0:1.5-29.src",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.i386"
},
"product_reference": "krb5-debuginfo-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.ia64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.ppc"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.ppc64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.s390"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.s390x"
},
"product_reference": "krb5-debuginfo-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-debuginfo-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-debuginfo-0:1.5-29.x86_64"
},
"product_reference": "krb5-debuginfo-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.i386"
},
"product_reference": "krb5-devel-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.ia64"
},
"product_reference": "krb5-devel-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.ppc"
},
"product_reference": "krb5-devel-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.ppc64"
},
"product_reference": "krb5-devel-0:1.5-29.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.s390"
},
"product_reference": "krb5-devel-0:1.5-29.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.s390x"
},
"product_reference": "krb5-devel-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-devel-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-devel-0:1.5-29.x86_64"
},
"product_reference": "krb5-devel-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.i386"
},
"product_reference": "krb5-libs-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.ia64"
},
"product_reference": "krb5-libs-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.ppc"
},
"product_reference": "krb5-libs-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.ppc64"
},
"product_reference": "krb5-libs-0:1.5-29.ppc64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.s390"
},
"product_reference": "krb5-libs-0:1.5-29.s390",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.s390x"
},
"product_reference": "krb5-libs-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-libs-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-libs-0:1.5-29.x86_64"
},
"product_reference": "krb5-libs-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.i386"
},
"product_reference": "krb5-server-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.ia64"
},
"product_reference": "krb5-server-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.ppc"
},
"product_reference": "krb5-server-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.s390x"
},
"product_reference": "krb5-server-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-server-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-server-0:1.5-29.x86_64"
},
"product_reference": "krb5-server-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.i386 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.i386"
},
"product_reference": "krb5-workstation-0:1.5-29.i386",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.ia64"
},
"product_reference": "krb5-workstation-0:1.5-29.ia64",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.ppc as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.ppc"
},
"product_reference": "krb5-workstation-0:1.5-29.ppc",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.s390x as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.s390x"
},
"product_reference": "krb5-workstation-0:1.5-29.s390x",
"relates_to_product_reference": "5Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "krb5-workstation-0:1.5-29.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)",
"product_id": "5Server:krb5-workstation-0:1.5-29.x86_64"
},
"product_reference": "krb5-workstation-0:1.5-29.x86_64",
"relates_to_product_reference": "5Server"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-4743",
"discovery_date": "2007-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "281561"
}
],
"notes": [
{
"category": "description",
"text": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "krb5 incomplete fix for CVE-2007-3999",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"5Client-Workstation:krb5-0:1.5-29.src",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.i386",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ia64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390x",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.x86_64",
"5Client-Workstation:krb5-devel-0:1.5-29.i386",
"5Client-Workstation:krb5-devel-0:1.5-29.ia64",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc64",
"5Client-Workstation:krb5-devel-0:1.5-29.s390",
"5Client-Workstation:krb5-devel-0:1.5-29.s390x",
"5Client-Workstation:krb5-devel-0:1.5-29.x86_64",
"5Client-Workstation:krb5-libs-0:1.5-29.i386",
"5Client-Workstation:krb5-libs-0:1.5-29.ia64",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc64",
"5Client-Workstation:krb5-libs-0:1.5-29.s390",
"5Client-Workstation:krb5-libs-0:1.5-29.s390x",
"5Client-Workstation:krb5-libs-0:1.5-29.x86_64",
"5Client-Workstation:krb5-server-0:1.5-29.i386",
"5Client-Workstation:krb5-server-0:1.5-29.ia64",
"5Client-Workstation:krb5-server-0:1.5-29.ppc",
"5Client-Workstation:krb5-server-0:1.5-29.s390x",
"5Client-Workstation:krb5-server-0:1.5-29.x86_64",
"5Client-Workstation:krb5-workstation-0:1.5-29.i386",
"5Client-Workstation:krb5-workstation-0:1.5-29.ia64",
"5Client-Workstation:krb5-workstation-0:1.5-29.ppc",
"5Client-Workstation:krb5-workstation-0:1.5-29.s390x",
"5Client-Workstation:krb5-workstation-0:1.5-29.x86_64",
"5Client:krb5-0:1.5-29.src",
"5Client:krb5-debuginfo-0:1.5-29.i386",
"5Client:krb5-debuginfo-0:1.5-29.ia64",
"5Client:krb5-debuginfo-0:1.5-29.ppc",
"5Client:krb5-debuginfo-0:1.5-29.ppc64",
"5Client:krb5-debuginfo-0:1.5-29.s390",
"5Client:krb5-debuginfo-0:1.5-29.s390x",
"5Client:krb5-debuginfo-0:1.5-29.x86_64",
"5Client:krb5-devel-0:1.5-29.i386",
"5Client:krb5-devel-0:1.5-29.ia64",
"5Client:krb5-devel-0:1.5-29.ppc",
"5Client:krb5-devel-0:1.5-29.ppc64",
"5Client:krb5-devel-0:1.5-29.s390",
"5Client:krb5-devel-0:1.5-29.s390x",
"5Client:krb5-devel-0:1.5-29.x86_64",
"5Client:krb5-libs-0:1.5-29.i386",
"5Client:krb5-libs-0:1.5-29.ia64",
"5Client:krb5-libs-0:1.5-29.ppc",
"5Client:krb5-libs-0:1.5-29.ppc64",
"5Client:krb5-libs-0:1.5-29.s390",
"5Client:krb5-libs-0:1.5-29.s390x",
"5Client:krb5-libs-0:1.5-29.x86_64",
"5Client:krb5-server-0:1.5-29.i386",
"5Client:krb5-server-0:1.5-29.ia64",
"5Client:krb5-server-0:1.5-29.ppc",
"5Client:krb5-server-0:1.5-29.s390x",
"5Client:krb5-server-0:1.5-29.x86_64",
"5Client:krb5-workstation-0:1.5-29.i386",
"5Client:krb5-workstation-0:1.5-29.ia64",
"5Client:krb5-workstation-0:1.5-29.ppc",
"5Client:krb5-workstation-0:1.5-29.s390x",
"5Client:krb5-workstation-0:1.5-29.x86_64",
"5Server:krb5-0:1.5-29.src",
"5Server:krb5-debuginfo-0:1.5-29.i386",
"5Server:krb5-debuginfo-0:1.5-29.ia64",
"5Server:krb5-debuginfo-0:1.5-29.ppc",
"5Server:krb5-debuginfo-0:1.5-29.ppc64",
"5Server:krb5-debuginfo-0:1.5-29.s390",
"5Server:krb5-debuginfo-0:1.5-29.s390x",
"5Server:krb5-debuginfo-0:1.5-29.x86_64",
"5Server:krb5-devel-0:1.5-29.i386",
"5Server:krb5-devel-0:1.5-29.ia64",
"5Server:krb5-devel-0:1.5-29.ppc",
"5Server:krb5-devel-0:1.5-29.ppc64",
"5Server:krb5-devel-0:1.5-29.s390",
"5Server:krb5-devel-0:1.5-29.s390x",
"5Server:krb5-devel-0:1.5-29.x86_64",
"5Server:krb5-libs-0:1.5-29.i386",
"5Server:krb5-libs-0:1.5-29.ia64",
"5Server:krb5-libs-0:1.5-29.ppc",
"5Server:krb5-libs-0:1.5-29.ppc64",
"5Server:krb5-libs-0:1.5-29.s390",
"5Server:krb5-libs-0:1.5-29.s390x",
"5Server:krb5-libs-0:1.5-29.x86_64",
"5Server:krb5-server-0:1.5-29.i386",
"5Server:krb5-server-0:1.5-29.ia64",
"5Server:krb5-server-0:1.5-29.ppc",
"5Server:krb5-server-0:1.5-29.s390x",
"5Server:krb5-server-0:1.5-29.x86_64",
"5Server:krb5-workstation-0:1.5-29.i386",
"5Server:krb5-workstation-0:1.5-29.ia64",
"5Server:krb5-workstation-0:1.5-29.ppc",
"5Server:krb5-workstation-0:1.5-29.s390x",
"5Server:krb5-workstation-0:1.5-29.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2007-4743"
},
{
"category": "external",
"summary": "RHBZ#281561",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=281561"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2007-4743",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4743"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2007-4743",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4743"
}
],
"release_date": "2007-09-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2007-09-07T12:14:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. \n\nThis update is available via Red Hat Network. Details on how to use \nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/FAQ_58_10188",
"product_ids": [
"5Client-Workstation:krb5-0:1.5-29.src",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.i386",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ia64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.ppc64",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.s390x",
"5Client-Workstation:krb5-debuginfo-0:1.5-29.x86_64",
"5Client-Workstation:krb5-devel-0:1.5-29.i386",
"5Client-Workstation:krb5-devel-0:1.5-29.ia64",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc",
"5Client-Workstation:krb5-devel-0:1.5-29.ppc64",
"5Client-Workstation:krb5-devel-0:1.5-29.s390",
"5Client-Workstation:krb5-devel-0:1.5-29.s390x",
"5Client-Workstation:krb5-devel-0:1.5-29.x86_64",
"5Client-Workstation:krb5-libs-0:1.5-29.i386",
"5Client-Workstation:krb5-libs-0:1.5-29.ia64",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc",
"5Client-Workstation:krb5-libs-0:1.5-29.ppc64",
"5Client-Workstation:krb5-libs-0:1.5-29.s390",
"5Client-Workstation:krb5-libs-0:1.5-29.s390x",
"5Client-Workstation:krb5-libs-0:1.5-29.x86_64",
"5Client-Workstation:krb5-server-0:1.5-29.i386",
"5Client-Workstation:krb5-server-0:1.5-29.ia64",
"5Client-Workstation:krb5-server-0:1.5-29.ppc",
"5Client-Workstation:krb5-server-0:1.5-29.s390x",
"5Client-Workstation:krb5-server-0:1.5-29.x86_64",
"5Client-Workstation:krb5-workstation-0:1.5-29.i386",
"5Client-Workstation:krb5-workstation-0:1.5-29.ia64",
"5Client-Workstation:krb5-workstation-0:1.5-29.ppc",
"5Client-Workstation:krb5-workstation-0:1.5-29.s390x",
"5Client-Workstation:krb5-workstation-0:1.5-29.x86_64",
"5Client:krb5-0:1.5-29.src",
"5Client:krb5-debuginfo-0:1.5-29.i386",
"5Client:krb5-debuginfo-0:1.5-29.ia64",
"5Client:krb5-debuginfo-0:1.5-29.ppc",
"5Client:krb5-debuginfo-0:1.5-29.ppc64",
"5Client:krb5-debuginfo-0:1.5-29.s390",
"5Client:krb5-debuginfo-0:1.5-29.s390x",
"5Client:krb5-debuginfo-0:1.5-29.x86_64",
"5Client:krb5-devel-0:1.5-29.i386",
"5Client:krb5-devel-0:1.5-29.ia64",
"5Client:krb5-devel-0:1.5-29.ppc",
"5Client:krb5-devel-0:1.5-29.ppc64",
"5Client:krb5-devel-0:1.5-29.s390",
"5Client:krb5-devel-0:1.5-29.s390x",
"5Client:krb5-devel-0:1.5-29.x86_64",
"5Client:krb5-libs-0:1.5-29.i386",
"5Client:krb5-libs-0:1.5-29.ia64",
"5Client:krb5-libs-0:1.5-29.ppc",
"5Client:krb5-libs-0:1.5-29.ppc64",
"5Client:krb5-libs-0:1.5-29.s390",
"5Client:krb5-libs-0:1.5-29.s390x",
"5Client:krb5-libs-0:1.5-29.x86_64",
"5Client:krb5-server-0:1.5-29.i386",
"5Client:krb5-server-0:1.5-29.ia64",
"5Client:krb5-server-0:1.5-29.ppc",
"5Client:krb5-server-0:1.5-29.s390x",
"5Client:krb5-server-0:1.5-29.x86_64",
"5Client:krb5-workstation-0:1.5-29.i386",
"5Client:krb5-workstation-0:1.5-29.ia64",
"5Client:krb5-workstation-0:1.5-29.ppc",
"5Client:krb5-workstation-0:1.5-29.s390x",
"5Client:krb5-workstation-0:1.5-29.x86_64",
"5Server:krb5-0:1.5-29.src",
"5Server:krb5-debuginfo-0:1.5-29.i386",
"5Server:krb5-debuginfo-0:1.5-29.ia64",
"5Server:krb5-debuginfo-0:1.5-29.ppc",
"5Server:krb5-debuginfo-0:1.5-29.ppc64",
"5Server:krb5-debuginfo-0:1.5-29.s390",
"5Server:krb5-debuginfo-0:1.5-29.s390x",
"5Server:krb5-debuginfo-0:1.5-29.x86_64",
"5Server:krb5-devel-0:1.5-29.i386",
"5Server:krb5-devel-0:1.5-29.ia64",
"5Server:krb5-devel-0:1.5-29.ppc",
"5Server:krb5-devel-0:1.5-29.ppc64",
"5Server:krb5-devel-0:1.5-29.s390",
"5Server:krb5-devel-0:1.5-29.s390x",
"5Server:krb5-devel-0:1.5-29.x86_64",
"5Server:krb5-libs-0:1.5-29.i386",
"5Server:krb5-libs-0:1.5-29.ia64",
"5Server:krb5-libs-0:1.5-29.ppc",
"5Server:krb5-libs-0:1.5-29.ppc64",
"5Server:krb5-libs-0:1.5-29.s390",
"5Server:krb5-libs-0:1.5-29.s390x",
"5Server:krb5-libs-0:1.5-29.x86_64",
"5Server:krb5-server-0:1.5-29.i386",
"5Server:krb5-server-0:1.5-29.ia64",
"5Server:krb5-server-0:1.5-29.ppc",
"5Server:krb5-server-0:1.5-29.s390x",
"5Server:krb5-server-0:1.5-29.x86_64",
"5Server:krb5-workstation-0:1.5-29.i386",
"5Server:krb5-workstation-0:1.5-29.ia64",
"5Server:krb5-workstation-0:1.5-29.ppc",
"5Server:krb5-workstation-0:1.5-29.s390x",
"5Server:krb5-workstation-0:1.5-29.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2007:0892"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "krb5 incomplete fix for CVE-2007-3999"
}
]
}
GSD-2007-4743
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2007-4743",
"description": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.",
"id": "GSD-2007-4743",
"references": [
"https://www.suse.com/security/cve/CVE-2007-4743.html",
"https://www.debian.org/security/2007/dsa-1387",
"https://access.redhat.com/errata/RHSA-2007:0892",
"https://linux.oracle.com/cve/CVE-2007-4743.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2007-4743"
],
"details": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.",
"id": "GSD-2007-4743",
"modified": "2023-12-13T01:21:36.830674Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2007-4743",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://docs.info.apple.com/article.html?artnum=307041",
"refsource": "MISC",
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"name": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html",
"refsource": "MISC",
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"name": "http://secunia.com/advisories/27643",
"refsource": "MISC",
"url": "http://secunia.com/advisories/27643"
},
{
"name": "http://www.securityfocus.com/bid/26444",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/26444"
},
{
"name": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html",
"refsource": "MISC",
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
},
{
"name": "http://www.vupen.com/english/advisories/2007/3868",
"refsource": "MISC",
"url": "http://www.vupen.com/english/advisories/2007/3868"
},
{
"name": "http://secunia.com/advisories/26987",
"refsource": "MISC",
"url": "http://secunia.com/advisories/26987"
},
{
"name": "http://www.novell.com/linux/security/advisories/2007_19_sr.html",
"refsource": "MISC",
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"name": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86",
"refsource": "MISC",
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"name": "http://secunia.com/advisories/26699",
"refsource": "MISC",
"url": "http://secunia.com/advisories/26699"
},
{
"name": "http://www.debian.org/security/2007/dsa-1387",
"refsource": "MISC",
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"name": "http://www.redhat.com/support/errata/RHSA-2007-0892.html",
"refsource": "MISC",
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"name": "http://www.securityfocus.com/archive/1/478748/100/0/threaded",
"refsource": "MISC",
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
},
{
"name": "http://www.securityfocus.com/archive/1/478794/100/0/threaded",
"refsource": "MISC",
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"name": "http://www.ubuntu.com/usn/usn-511-2",
"refsource": "MISC",
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"name": "https://issues.rpath.com/browse/RPL-1696",
"refsource": "MISC",
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239",
"refsource": "MISC",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.4.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.4.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.4.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2007-4743"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86",
"refsource": "CONFIRM",
"tags": [
"Patch"
],
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"name": "https://issues.rpath.com/browse/RPL-1696",
"refsource": "CONFIRM",
"tags": [],
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"name": "http://docs.info.apple.com/article.html?artnum=307041",
"refsource": "CONFIRM",
"tags": [],
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"name": "APPLE-SA-2007-11-14",
"refsource": "APPLE",
"tags": [],
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"name": "DSA-1387",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"name": "RHSA-2007:0892",
"refsource": "REDHAT",
"tags": [],
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"name": "SUSE-SR:2007:019",
"refsource": "SUSE",
"tags": [],
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"name": "USN-511-2",
"refsource": "UBUNTU",
"tags": [],
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"name": "TA07-319A",
"refsource": "CERT",
"tags": [
"US Government Resource"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
},
{
"name": "26444",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/26444"
},
{
"name": "26699",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/26699"
},
{
"name": "26987",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/26987"
},
{
"name": "27643",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/27643"
},
{
"name": "ADV-2007-3868",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2007/3868"
},
{
"name": "oval:org.mitre.oval:def:10239",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
},
{
"name": "20070907 FLEA-2007-0050-1 krb5 krb5-workstation",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"name": "20070906 rPSA-2007-0179-1 krb5 krb5-server krb5-services krb5-test krb5-workstation",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2020-01-21T15:45Z",
"publishedDate": "2007-09-06T22:17Z"
}
}
}
FKIE_CVE-2007-4743
Vulnerability from fkie_nvd - Published: 2007-09-06 22:17 - Updated: 2025-04-09 00:30
Severity ?
Summary
The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86 | Patch | |
| secalert@redhat.com | http://docs.info.apple.com/article.html?artnum=307041 | ||
| secalert@redhat.com | http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html | ||
| secalert@redhat.com | http://secunia.com/advisories/26699 | ||
| secalert@redhat.com | http://secunia.com/advisories/26987 | ||
| secalert@redhat.com | http://secunia.com/advisories/27643 | ||
| secalert@redhat.com | http://www.debian.org/security/2007/dsa-1387 | ||
| secalert@redhat.com | http://www.novell.com/linux/security/advisories/2007_19_sr.html | ||
| secalert@redhat.com | http://www.redhat.com/support/errata/RHSA-2007-0892.html | ||
| secalert@redhat.com | http://www.securityfocus.com/archive/1/478748/100/0/threaded | ||
| secalert@redhat.com | http://www.securityfocus.com/archive/1/478794/100/0/threaded | ||
| secalert@redhat.com | http://www.securityfocus.com/bid/26444 | ||
| secalert@redhat.com | http://www.ubuntu.com/usn/usn-511-2 | ||
| secalert@redhat.com | http://www.us-cert.gov/cas/techalerts/TA07-319A.html | US Government Resource | |
| secalert@redhat.com | http://www.vupen.com/english/advisories/2007/3868 | ||
| secalert@redhat.com | https://issues.rpath.com/browse/RPL-1696 | ||
| secalert@redhat.com | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86 | Patch | |
| af854a3a-2127-422b-91ae-364da2661108 | http://docs.info.apple.com/article.html?artnum=307041 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/26699 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/26987 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/27643 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2007/dsa-1387 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.novell.com/linux/security/advisories/2007_19_sr.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2007-0892.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/archive/1/478748/100/0/threaded | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/archive/1/478794/100/0/threaded | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/26444 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.ubuntu.com/usn/usn-511-2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.us-cert.gov/cas/techalerts/TA07-319A.html | US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2007/3868 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://issues.rpath.com/browse/RPL-1696 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mit | kerberos_5 | 1.4 | |
| mit | kerberos_5 | 1.4.1 | |
| mit | kerberos_5 | 1.4.2 | |
| mit | kerberos_5 | 1.4.3 | |
| mit | kerberos_5 | 1.4.4 | |
| mit | kerberos_5 | 1.5 | |
| mit | kerberos_5 | 1.5.1 | |
| mit | kerberos_5 | 1.5.2 | |
| mit | kerberos_5 | 1.5.3 | |
| mit | kerberos_5 | 1.6 | |
| mit | kerberos_5 | 1.6.1 | |
| mit | kerberos_5 | 1.6.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "52F0EECF-7787-442B-9888-D22F7D36C3DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "EF344AED-BE00-4A9B-A9DE-C6FB0BEE4617",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "567406CA-58D8-453E-B36E-6D1D2EFC8EB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "7830E03F-A813-4E35-893E-BF27395CEFB3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "7764411E-C056-4696-822E-235F2620FAC4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "4DD315AE-868B-4061-BF01-CDBF59B02499",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B639DD5F-71C7-4D9B-BA5C-51CAF64140B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2B904DCE-D59F-45C7-A814-DE42CF02792D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.5.3:*:*:*:*:*:*:*",
"matchCriteriaId": "9957FE9E-1E89-4C27-852C-44F866A1834E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "2C382DAA-68D2-4DD9-BE29-8EEB0BAF1A7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "73BB258E-51CF-4D12-836B-BCEA587A3F5F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:*",
"matchCriteriaId": "F81DE01C-BA3B-40B4-BD85-17692F0AF8A8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The original patch for CVE-2007-3999 in svc_auth_gss.c in the RPCSEC_GSS RPC library in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and other applications that use krb5, does not correctly check the buffer length in some environments and architectures, which might allow remote attackers to conduct a buffer overflow attack."
},
{
"lang": "es",
"value": "El parche original para la CVE-2007-3999 en el svc_auth_gss.c de la librer\u00eda RPCSEC_GSS RPC en el MIT Kerberos 5 (krb5) 1.4 hasta el 1.6.2, como el utilizado en el demonio de administraci\u00f3n del Kerberos (kadmind) y otras aplicaciones que utlizan el krb5, no verifica correctamente la longitud del b\u00fafer en algunos entornos y arquitecturas, lo que puede permitir a atacantes remotos llevar a cabo un ataque de desbordamiento de b\u00fafer."
}
],
"id": "CVE-2007-4743",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2007-09-06T22:17:00.000",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Patch"
],
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"source": "secalert@redhat.com",
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/26699"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/26987"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/27643"
},
{
"source": "secalert@redhat.com",
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"source": "secalert@redhat.com",
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"source": "secalert@redhat.com",
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/26444"
},
{
"source": "secalert@redhat.com",
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"source": "secalert@redhat.com",
"tags": [
"US Government Resource"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
},
{
"source": "secalert@redhat.com",
"url": "http://www.vupen.com/english/advisories/2007/3868"
},
{
"source": "secalert@redhat.com",
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"source": "secalert@redhat.com",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://article.gmane.org/gmane.comp.encryption.kerberos.announce/86"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://docs.info.apple.com/article.html?artnum=307041"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/26699"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/26987"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/27643"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2007/dsa-1387"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.novell.com/linux/security/advisories/2007_19_sr.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.redhat.com/support/errata/RHSA-2007-0892.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/478748/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/478794/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/26444"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ubuntu.com/usn/usn-511-2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
],
"url": "http://www.us-cert.gov/cas/techalerts/TA07-319A.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2007/3868"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://issues.rpath.com/browse/RPL-1696"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10239"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…