Search for packages
| purl | pkg:deb/debian/heimdal@7.7.0%2Bdfsg-2%2Bdeb11u3?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-21hz-xvek-73cd | Multiple vulnerabilities have been found in Samba, the worst of which could lead to remote code execution. |
CVE-2018-16860
|
| VCID-2naz-tr19-4ya4 | Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path. |
CVE-2004-0371
|
| VCID-3du2-evy8-jfa1 | Multiple vulnerabilities have been discovered in MIT krb5, the worst of which could lead to remote code execution. |
CVE-2022-42898
|
| VCID-49ja-xj3f-yqcr | Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002-1225). |
CVE-2002-1226
|
| VCID-4vzx-hyh9-pubu | security flaw |
CVE-2003-0138
|
| VCID-5tkj-88u2-83ha | Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a KDC. |
CVE-2022-41916
|
| VCID-6pc6-jusr-tfgg | telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference. |
CVE-2006-0677
|
| VCID-81xv-v927-8fdz | The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets. |
CVE-2017-6594
|
| VCID-bc1t-hzu5-bffd | Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a KDC. |
CVE-2022-44640
|
| VCID-dcyh-dtgk-gydq | The gss_userok function in appl/ftp/ftpd/gss_userok.c in Heimdal 0.7.2 does not allocate memory for the ticketfile pointer before calling free, which allows remote attackers to have an unknown impact via an invalid username. NOTE: the vulnerability was originally reported for ftpd.c, but this is incorrect. |
CVE-2007-5939
|
| VCID-ezmy-qjh7-6ycj | security update |
CVE-2017-17439
|
| VCID-frnd-3wwy-93ek | Multiple vulnerabilities have been found in Samba, the worst of which could lead to remote code execution. |
CVE-2019-14870
|
| VCID-fxhm-q84c-pyhb | Multiple buffer overflows in Heimdal before 0.5, possibly in both the (1) kadmind and (2) kdc servers, may allow remote attackers to gain root access. |
CVE-2002-1225
|
| VCID-hzb7-vff4-qufw | k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow. |
CVE-2004-0434
|
| VCID-j7kn-5ch6-13du | Multiple buffer overflows in the getterminaltype function in telnetd for Heimdal before 0.6.5 may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2005-0468 and CVE-2005-0469. |
CVE-2005-2040
|
| VCID-jfb1-3vg4-vbap | Multiple vulnerabilities have been found in MIT Kerberos 5, the most severe of which may allow remote execution of arbitrary code. |
CVE-2010-1321
|
| VCID-jhcx-pb5e-8kev | Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a KDC. |
CVE-2021-44758
|
| VCID-kmgq-s8my-u7cm | security flaw |
CVE-2002-1235
|
| VCID-ny6v-nczj-x7dw | security flaw |
CVE-2005-0469
|
| VCID-r49y-kqyv-pkbq | security update |
CVE-2019-12098
|
| VCID-rfpr-mdg9-3uaa | Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a KDC. |
CVE-2022-45142
|
| VCID-s2ne-rcp3-nbgz | Multiple vulnerabilities have been discovered in Samba, the worst of which could result in root remote code execution. |
CVE-2022-3437
|
| VCID-tcbv-cguk-hfg2 | security update |
CVE-2017-11103
|
| VCID-unvx-tsxw-abbw | A boundary error in Heimdal could result in execution of arbitrary code. |
CVE-2011-4862
|
| VCID-vq9j-dspn-kke2 | The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash. |
CVE-2022-3116
|
| VCID-wgdd-6dt5-37ge | An error in the rshd daemon of Heimdal could allow authenticated users to elevate privileges. |
CVE-2006-0582
|
| VCID-ws2g-8ye2-pkdk | samba: Null pointer dereference on missing sname in TGS-REQ |
CVE-2021-3671
|