mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
287 lines
11 KiB
JSON
287 lines
11 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2008-0063",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka \"Uninitialized stack values.\""
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "ADV-2008-1744",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/1744"
|
|
},
|
|
{
|
|
"name": "29457",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29457"
|
|
},
|
|
{
|
|
"name": "MDVSA-2008:069",
|
|
"refsource": "MANDRIVA",
|
|
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:069"
|
|
},
|
|
{
|
|
"name": "29464",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29464"
|
|
},
|
|
{
|
|
"name": "GLSA-200803-31",
|
|
"refsource": "GENTOO",
|
|
"url": "http://www.gentoo.org/security/en/glsa/glsa-200803-31.xml"
|
|
},
|
|
{
|
|
"name": "krb5-kdc-kerberos4-info-disclosure(41277)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41277"
|
|
},
|
|
{
|
|
"name": "FEDORA-2008-2637",
|
|
"refsource": "FEDORA",
|
|
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00537.html"
|
|
},
|
|
{
|
|
"name": "MDVSA-2008:071",
|
|
"refsource": "MANDRIVA",
|
|
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:071"
|
|
},
|
|
{
|
|
"name": "http://wiki.rpath.com/Advisories:rPSA-2008-0112",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://wiki.rpath.com/Advisories:rPSA-2008-0112"
|
|
},
|
|
{
|
|
"name": "1019627",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id?1019627"
|
|
},
|
|
{
|
|
"name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022542.html",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022542.html"
|
|
},
|
|
{
|
|
"name": "29451",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29451"
|
|
},
|
|
{
|
|
"name": "29663",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29663"
|
|
},
|
|
{
|
|
"name": "FEDORA-2008-2647",
|
|
"refsource": "FEDORA",
|
|
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00544.html"
|
|
},
|
|
{
|
|
"name": "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0112",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0112"
|
|
},
|
|
{
|
|
"name": "29438",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29438"
|
|
},
|
|
{
|
|
"name": "http://www.vmware.com/security/advisories/VMSA-2008-0009.html",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.vmware.com/security/advisories/VMSA-2008-0009.html"
|
|
},
|
|
{
|
|
"name": "ADV-2008-0924",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/0924/references"
|
|
},
|
|
{
|
|
"name": "RHSA-2008:0164",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2008-0164.html"
|
|
},
|
|
{
|
|
"name": "MDVSA-2008:070",
|
|
"refsource": "MANDRIVA",
|
|
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:070"
|
|
},
|
|
{
|
|
"name": "ADV-2008-0922",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/0922/references"
|
|
},
|
|
{
|
|
"name": "29450",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29450"
|
|
},
|
|
{
|
|
"name": "29435",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29435"
|
|
},
|
|
{
|
|
"name": "20080319 rPSA-2008-0112-1 krb5 krb5-server krb5-services krb5-test krb5-workstation",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/489883/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "29428",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29428"
|
|
},
|
|
{
|
|
"name": "29420",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29420"
|
|
},
|
|
{
|
|
"name": "DSA-1524",
|
|
"refsource": "DEBIAN",
|
|
"url": "http://www.debian.org/security/2008/dsa-1524"
|
|
},
|
|
{
|
|
"name": "30535",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/30535"
|
|
},
|
|
{
|
|
"name": "APPLE-SA-2008-03-18",
|
|
"refsource": "APPLE",
|
|
"url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html"
|
|
},
|
|
{
|
|
"name": "RHSA-2008:0182",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2008-0182.html"
|
|
},
|
|
{
|
|
"name": "oval:org.mitre.oval:def:8916",
|
|
"refsource": "OVAL",
|
|
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8916"
|
|
},
|
|
{
|
|
"name": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022520.html",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022520.html"
|
|
},
|
|
{
|
|
"name": "20080604 VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/493080/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "RHSA-2008:0180",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2008-0180.html"
|
|
},
|
|
{
|
|
"name": "SUSE-SA:2008:016",
|
|
"refsource": "SUSE",
|
|
"url": "http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00006.html"
|
|
},
|
|
{
|
|
"name": "29516",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29516"
|
|
},
|
|
{
|
|
"name": "29462",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29462"
|
|
},
|
|
{
|
|
"name": "29424",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29424"
|
|
},
|
|
{
|
|
"name": "http://docs.info.apple.com/article.html?artnum=307562",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://docs.info.apple.com/article.html?artnum=307562"
|
|
},
|
|
{
|
|
"name": "RHSA-2008:0181",
|
|
"refsource": "REDHAT",
|
|
"url": "http://www.redhat.com/support/errata/RHSA-2008-0181.html"
|
|
},
|
|
{
|
|
"name": "29423",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/29423"
|
|
},
|
|
{
|
|
"name": "USN-587-1",
|
|
"refsource": "UBUNTU",
|
|
"url": "http://www.ubuntu.com/usn/usn-587-1"
|
|
},
|
|
{
|
|
"name": "ADV-2008-1102",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2008/1102/references"
|
|
},
|
|
{
|
|
"name": "28303",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/28303"
|
|
},
|
|
{
|
|
"name": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2008-001.txt",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2008-001.txt"
|
|
},
|
|
{
|
|
"name": "20080318 MITKRB5-SA-2008-001: double-free, uninitialized data vulnerabilities in krb5kdc",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/489761"
|
|
}
|
|
]
|
|
}
|
|
} |