{"id":"USN-6467-2","summary":"krb5 vulnerability","details":"USN-6467-1 fixed a vulnerability in Kerberos. This update provides the\ncorresponding update for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu\n23.04.\n\nOriginal advisory details:\n\n Robert Morris discovered that Kerberos did not properly handle memory\n access when processing RPC data through kadmind, which could lead to the\n freeing of uninitialized memory. An authenticated remote attacker could\n possibly use this issue to cause kadmind to crash, resulting in a denial\n of service.\n","modified":"2026-04-24T09:44:18.724485Z","published":"2023-11-06T09:36:15Z","related":["UBUNTU-CVE-2023-36054"],"upstream":["CVE-2023-36054","UBUNTU-CVE-2023-36054"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-6467-2"}],"affected":[{"package":{"name":"krb5","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/krb5@1.17-6ubuntu4.4?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.17-6ubuntu4.4"}]}],"versions":["1.17-6","1.17-6ubuntu3","1.17-6ubuntu4","1.17-6ubuntu4.1","1.17-6ubuntu4.2","1.17-6ubuntu4.3"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"krb5-admin-server","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-gss-samples","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-k5tls","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-kdc","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-kdc-ldap","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-kpropd","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-locales","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-multidev","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-otp","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-pkinit","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"krb5-user","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libgssapi-krb5-2","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libgssrpc4","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libk5crypto3","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libkadm5clnt-mit11","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libkadm5srv-mit11","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libkdb5-9","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libkrad0","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libkrb5-3","binary_version":"1.17-6ubuntu4.4"},{"binary_name":"libkrb5support0","binary_version":"1.17-6ubuntu4.4"}]},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:20.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6467-2.json"}},{"package":{"name":"krb5","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/krb5@1.19.2-2ubuntu0.3?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.19.2-2ubuntu0.3"}]}],"versions":["1.18.3-6","1.18.3-7","1.19.2-0ubuntu1","1.19.2-1","1.19.2-2","1.19.2-2ubuntu0.1","1.19.2-2ubuntu0.2"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"krb5-admin-server","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-gss-samples","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-k5tls","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-kdc","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-kdc-ldap","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-kpropd","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-locales","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-multidev","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-otp","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-pkinit","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"krb5-user","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libgssapi-krb5-2","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libgssrpc4","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libk5crypto3","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libkadm5clnt-mit12","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libkadm5srv-mit12","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libkdb5-10","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libkrad0","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libkrb5-3","binary_version":"1.19.2-2ubuntu0.3"},{"binary_name":"libkrb5support0","binary_version":"1.19.2-2ubuntu0.3"}]},"database_specific":{"cves_map":{"cves":[],"ecosystem":"Ubuntu:22.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6467-2.json"}}],"schema_version":"1.7.5"}