Search for packages
| purl | pkg:deb/debian/heimdal@7.7.0%2Bdfsg-2%2Bdeb11u3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-2svs-kh37-aaaa | Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC (via PKINIT) and kinit (via PKINIT), as well as any third-party applications using Heimdal's libhx509. Users should upgrade to Heimdal 7.7.1 or 7.8. There are no known workarounds for this issue. |
CVE-2022-41916
|
| VCID-9hzk-sbj1-aaaa | The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp. When these patches were backported to the heimdal-7.7.1 and heimdal-7.8.0 branches (and possibly other branches) a logic inversion sneaked in causing the validation of message integrity codes in gssapi/arcfour to be inverted. |
CVE-2022-45142
|
| VCID-9m29-pkag-aaaq | Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept. |
CVE-2021-44758
|
| VCID-c19s-mkvt-aaae | A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server. |
CVE-2021-3671
|
| VCID-ca4y-g2b2-aaah | All Samba versions 4.x.x before 4.9.17, 4.10.x before 4.10.11 and 4.11.x before 4.11.3 have an issue, where the S4U (MS-SFU) Kerberos delegation model includes a feature allowing for a subset of clients to be opted out of constrained delegation in any way, either S4U2Self or regular Kerberos authentication, by forcing all tickets for these clients to be non-forwardable. In AD this is implemented by a user attribute delegation_not_allowed (aka not-delegated), which translates to disallow-forwardable. However the Samba AD DC does not do that for S4U2Self and does set the forwardable flag even if the impersonated client has the not-delegated flag set. |
CVE-2019-14870
|
| VCID-m9ne-ccbr-aaak | A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application, possibly resulting in a denial of service (DoS) attack. |
CVE-2022-3437
|
| VCID-qr91-uuuy-aaas | PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug." |
CVE-2022-42898
|
| VCID-umha-y7hp-aaag | Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC). |
CVE-2022-44640
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:16:40.904988+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:28:11.166221+00:00 | Debian Importer | Fixing | VCID-c19s-mkvt-aaae | None | 36.1.3 |
| 2025-06-21T18:25:15.953516+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T17:38:00.283623+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:31:59.340711+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:56:16.647670+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:49:44.189591+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:24:21.608758+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:56:23.685541+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:06:39.665323+00:00 | Debian Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 36.1.3 |
| 2025-06-21T13:05:02.479777+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:52:37.854732+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T07:18:53.504007+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | None | 36.1.3 |
| 2025-06-21T06:45:49.921145+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | None | 36.1.3 |
| 2025-06-21T06:45:19.446330+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | None | 36.1.3 |
| 2025-06-21T06:44:54.166857+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 36.1.3 |
| 2025-06-21T06:44:38.771591+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | None | 36.1.3 |
| 2025-06-21T06:44:19.142353+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | None | 36.1.3 |
| 2025-06-21T06:44:11.693776+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | None | 36.1.3 |
| 2025-06-21T01:36:12.638154+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 36.1.3 |
| 2025-06-08T12:57:07.259158+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:12:54.797043+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:45:27.328991+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:55:53.408842+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:11:59.013046+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:17:47.312289+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:49:35.363928+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:43:06.341007+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:18:53.950606+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:49:53.955806+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:59:54.859364+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:05:37.613384+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T00:58:42.078117+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | None | 36.1.0 |
| 2025-06-08T00:25:20.045136+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | None | 36.1.0 |
| 2025-06-08T00:24:49.401075+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | None | 36.1.0 |
| 2025-06-08T00:24:24.092111+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 36.1.0 |
| 2025-06-08T00:24:08.636336+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | None | 36.1.0 |
| 2025-06-08T00:23:49.299066+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | None | 36.1.0 |
| 2025-06-08T00:23:41.389959+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | None | 36.1.0 |
| 2025-06-07T18:59:16.480574+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 36.1.0 |
| 2025-04-12T22:14:43.597742+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:05:25.775219+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:11:34.063012+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:12:43.772965+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:44:24.352722+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:58:36.137300+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:30:20.279567+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:38:30.011624+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T15:52:46.134805+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:49:53.365569+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:21:08.829615+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:14:36.793075+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:50:15.290962+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:22:20.314724+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:31:50.773721+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:36:32.467136+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T23:31:05.221989+00:00 | Debian Oval Importer | Fixing | VCID-9hzk-sbj1-aaaa | None | 36.0.0 |
| 2025-04-07T22:57:39.061714+00:00 | Debian Oval Importer | Fixing | VCID-2svs-kh37-aaaa | None | 36.0.0 |
| 2025-04-07T22:57:08.011827+00:00 | Debian Oval Importer | Fixing | VCID-qr91-uuuy-aaas | None | 36.0.0 |
| 2025-04-07T22:56:42.138711+00:00 | Debian Oval Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 36.0.0 |
| 2025-04-07T22:56:26.188124+00:00 | Debian Oval Importer | Fixing | VCID-c19s-mkvt-aaae | None | 36.0.0 |
| 2025-04-07T22:56:05.895018+00:00 | Debian Oval Importer | Fixing | VCID-9m29-pkag-aaaq | None | 36.0.0 |
| 2025-04-07T22:55:58.921446+00:00 | Debian Oval Importer | Fixing | VCID-umha-y7hp-aaag | None | 36.0.0 |
| 2025-04-07T17:37:08.095410+00:00 | Debian Oval Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 36.0.0 |
| 2025-04-07T11:19:27.693986+00:00 | Debian Importer | Fixing | VCID-2svs-kh37-aaaa | None | 36.0.0 |
| 2025-04-07T08:46:26.796493+00:00 | Debian Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 36.0.0 |
| 2025-04-07T01:46:27.569119+00:00 | Debian Importer | Fixing | VCID-qr91-uuuy-aaas | None | 36.0.0 |
| 2025-04-06T18:32:59.253939+00:00 | Debian Importer | Fixing | VCID-9m29-pkag-aaaq | None | 36.0.0 |
| 2025-04-06T18:21:34.542284+00:00 | Debian Importer | Fixing | VCID-umha-y7hp-aaag | None | 36.0.0 |
| 2025-04-05T14:37:07.961658+00:00 | Debian Importer | Fixing | VCID-c19s-mkvt-aaae | None | 36.0.0 |
| 2025-04-05T09:39:43.188429+00:00 | Debian Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 36.0.0 |
| 2025-02-21T04:35:12.459675+00:00 | Debian Importer | Fixing | VCID-umha-y7hp-aaag | None | 35.1.0 |
| 2025-02-21T04:04:37.467347+00:00 | Debian Importer | Fixing | VCID-qr91-uuuy-aaas | None | 35.1.0 |
| 2025-02-21T03:17:12.132604+00:00 | Debian Importer | Fixing | VCID-2svs-kh37-aaaa | None | 35.1.0 |
| 2025-02-20T23:03:59.071323+00:00 | Debian Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 35.1.0 |
| 2025-02-20T07:44:09.159686+00:00 | Debian Importer | Fixing | VCID-9m29-pkag-aaaq | None | 35.1.0 |
| 2025-02-20T02:47:17.672495+00:00 | Debian Importer | Fixing | VCID-c19s-mkvt-aaae | None | 35.1.0 |
| 2025-02-19T06:52:29.253484+00:00 | Debian Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 35.1.0 |
| 2024-04-25T21:38:12.466951+00:00 | Debian Importer | Fixing | VCID-umha-y7hp-aaag | None | 34.0.0rc4 |
| 2024-04-25T21:19:32.755658+00:00 | Debian Importer | Fixing | VCID-qr91-uuuy-aaas | None | 34.0.0rc4 |
| 2024-04-25T20:35:21.543912+00:00 | Debian Importer | Fixing | VCID-2svs-kh37-aaaa | None | 34.0.0rc4 |
| 2024-04-25T16:22:41.924769+00:00 | Debian Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 34.0.0rc4 |
| 2024-04-25T05:53:51.591915+00:00 | Debian Importer | Fixing | VCID-9m29-pkag-aaaq | None | 34.0.0rc4 |
| 2024-04-25T02:04:15.715888+00:00 | Debian Importer | Fixing | VCID-c19s-mkvt-aaae | None | 34.0.0rc4 |
| 2024-04-24T14:36:25.296357+00:00 | Debian Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 34.0.0rc4 |
| 2024-01-12T07:45:08.461561+00:00 | Debian Importer | Fixing | VCID-umha-y7hp-aaag | None | 34.0.0rc2 |
| 2024-01-12T06:59:20.299236+00:00 | Debian Importer | Fixing | VCID-qr91-uuuy-aaas | None | 34.0.0rc2 |
| 2024-01-12T05:04:04.013739+00:00 | Debian Importer | Fixing | VCID-2svs-kh37-aaaa | None | 34.0.0rc2 |
| 2024-01-11T19:23:26.199428+00:00 | Debian Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 34.0.0rc2 |
| 2024-01-11T07:53:53.504014+00:00 | Debian Importer | Fixing | VCID-9m29-pkag-aaaq | None | 34.0.0rc2 |
| 2024-01-11T03:08:16.512104+00:00 | Debian Importer | Fixing | VCID-c19s-mkvt-aaae | None | 34.0.0rc2 |
| 2024-01-10T17:20:11.643701+00:00 | Debian Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 34.0.0rc2 |
| 2024-01-05T05:47:00.535106+00:00 | Debian Importer | Fixing | VCID-umha-y7hp-aaag | None | 34.0.0rc1 |
| 2024-01-05T05:33:04.030407+00:00 | Debian Importer | Fixing | VCID-qr91-uuuy-aaas | None | 34.0.0rc1 |
| 2024-01-05T05:12:40.836789+00:00 | Debian Importer | Fixing | VCID-2svs-kh37-aaaa | None | 34.0.0rc1 |
| 2024-01-05T03:05:26.175356+00:00 | Debian Importer | Fixing | VCID-m9ne-ccbr-aaak | None | 34.0.0rc1 |
| 2024-01-04T18:21:16.188066+00:00 | Debian Importer | Fixing | VCID-9m29-pkag-aaaq | None | 34.0.0rc1 |
| 2024-01-04T15:14:57.663009+00:00 | Debian Importer | Fixing | VCID-c19s-mkvt-aaae | None | 34.0.0rc1 |
| 2024-01-04T06:58:03.245918+00:00 | Debian Importer | Fixing | VCID-ca4y-g2b2-aaah | None | 34.0.0rc1 |