Bug 2294676 (CVE-2024-37371) - CVE-2024-37371 krb5: GSS message token handling
Summary: CVE-2024-37371 krb5: GSS message token handling
Keywords:
Status: NEW
Alias: CVE-2024-37371
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2294680
Blocks: 2294679
TreeView+ depends on / blocked
 
Reported: 2024-06-28 03:22 UTC by Patrick Del Bello
Modified: 2024-09-09 20:43 UTC (History)
22 users (show)

Fixed In Version:
Doc Type: ---
Doc Text:
A vulnerability was found in Kerberos. This flaw is due to an issue with message token handling.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2024:5414 0 None None None 2024-08-14 19:54:32 UTC
Red Hat Product Errata RHBA-2024:5415 0 None None None 2024-08-14 20:59:06 UTC
Red Hat Product Errata RHBA-2024:5452 0 None None None 2024-08-15 08:06:29 UTC
Red Hat Product Errata RHBA-2024:5461 0 None None None 2024-08-15 12:49:49 UTC
Red Hat Product Errata RHBA-2024:5472 0 None None None 2024-08-15 18:36:49 UTC
Red Hat Product Errata RHBA-2024:5518 0 None None None 2024-08-19 00:42:36 UTC
Red Hat Product Errata RHBA-2024:5536 0 None None None 2024-08-19 06:09:43 UTC
Red Hat Product Errata RHBA-2024:5595 0 None None None 2024-08-20 09:04:08 UTC
Red Hat Product Errata RHBA-2024:5606 0 None None None 2024-08-20 10:59:37 UTC
Red Hat Product Errata RHBA-2024:5610 0 None None None 2024-08-20 13:02:38 UTC
Red Hat Product Errata RHBA-2024:5661 0 None None None 2024-08-20 19:38:13 UTC
Red Hat Product Errata RHBA-2024:5703 0 None None None 2024-08-21 12:14:24 UTC
Red Hat Product Errata RHBA-2024:5879 0 None None None 2024-08-27 01:40:03 UTC
Red Hat Product Errata RHBA-2024:6149 0 None None None 2024-09-03 01:49:32 UTC
Red Hat Product Errata RHBA-2024:6261 0 None None None 2024-09-03 22:11:30 UTC
Red Hat Product Errata RHBA-2024:6262 0 None None None 2024-09-03 22:11:47 UTC
Red Hat Product Errata RHBA-2024:6266 0 None None None 2024-09-03 23:40:46 UTC
Red Hat Product Errata RHBA-2024:6307 0 None None None 2024-09-04 10:55:34 UTC
Red Hat Product Errata RHBA-2024:6516 0 None None None 2024-09-09 20:22:59 UTC
Red Hat Product Errata RHBA-2024:6517 0 None None None 2024-09-09 20:42:59 UTC
Red Hat Product Errata RHSA-2024:4734 0 None None None 2024-07-23 14:55:04 UTC
Red Hat Product Errata RHSA-2024:4743 0 None None None 2024-07-23 15:27:51 UTC
Red Hat Product Errata RHSA-2024:5076 0 None None None 2024-08-07 10:16:32 UTC
Red Hat Product Errata RHSA-2024:5312 0 None None None 2024-08-13 15:27:40 UTC
Red Hat Product Errata RHSA-2024:5316 0 None None None 2024-08-13 15:39:58 UTC
Red Hat Product Errata RHSA-2024:5625 0 None None None 2024-08-20 15:49:52 UTC
Red Hat Product Errata RHSA-2024:5630 0 None None None 2024-08-20 15:47:08 UTC
Red Hat Product Errata RHSA-2024:5643 0 None None None 2024-08-20 16:08:17 UTC
Red Hat Product Errata RHSA-2024:5884 0 None None None 2024-08-27 07:42:27 UTC
Red Hat Product Errata RHSA-2024:6166 0 None None None 2024-09-03 16:40:37 UTC

Description Patrick Del Bello 2024-06-28 03:22:07 UTC
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.

Reference and upstream patch:
https://github.com/krb5/krb5/commit/55fbf435edbe2e92dd8101669b1ce7144bc96fef

Comment 2 Patrick Del Bello 2024-06-28 03:29:16 UTC
Created krb5 tracking bugs for this issue:

Affects: fedora-all [bug 2294680]

Comment 7 errata-xmlrpc 2024-07-23 14:55:02 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.4 Telecommunications Update Service

Via RHSA-2024:4734 https://access.redhat.com/errata/RHSA-2024:4734

Comment 8 errata-xmlrpc 2024-07-23 15:27:49 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2024:4743 https://access.redhat.com/errata/RHSA-2024:4743

Comment 9 errata-xmlrpc 2024-08-07 10:16:30 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Extended Lifecycle Support

Via RHSA-2024:5076 https://access.redhat.com/errata/RHSA-2024:5076

Comment 10 errata-xmlrpc 2024-08-13 15:27:38 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:5312 https://access.redhat.com/errata/RHSA-2024:5312

Comment 11 errata-xmlrpc 2024-08-13 15:39:56 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7.7 Advanced Update Support

Via RHSA-2024:5316 https://access.redhat.com/errata/RHSA-2024:5316

Comment 12 errata-xmlrpc 2024-08-20 15:47:06 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2024:5630 https://access.redhat.com/errata/RHSA-2024:5630

Comment 13 errata-xmlrpc 2024-08-20 15:49:50 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2024:5625 https://access.redhat.com/errata/RHSA-2024:5625

Comment 14 errata-xmlrpc 2024-08-20 16:08:15 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2024:5643 https://access.redhat.com/errata/RHSA-2024:5643

Comment 15 errata-xmlrpc 2024-08-27 07:42:25 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support

Via RHSA-2024:5884 https://access.redhat.com/errata/RHSA-2024:5884

Comment 16 errata-xmlrpc 2024-09-03 16:40:35 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:6166 https://access.redhat.com/errata/RHSA-2024:6166


Note You need to log in before you can comment on or make changes to this bug.