[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2015:0290-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":24,"duplicates":25,"related":26,"reserved_at":9,"published_at":32,"modified_at":33,"state":9,"summary":34,"references_raw":36,"kevs":77,"epss":9,"epss_history":78,"metrics":79,"affected":80},"SUSE-SU-2015:0290-1","Security update for krb5\n\n\nMIT kerberos krb5 was updated to fix several security issues and bugs.\n\nSecurity issues fixed:\nCVE-2014-5351: The kadm5_randkey_principal_3 function in\nlib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5)\nsent old keys in a response to a -randkey -keepold request, which allowed\nremote authenticated users to forge tickets by leveraging administrative\naccess.\n\nCVE-2014-5352: In the MIT krb5 libgssapi_krb5 library, after\ngss_process_context_token() is used to process a valid context\ndeletion token, the caller was left with a security context handle\ncontaining a dangling pointer.  Further uses of this handle would have\nresulted in use-after-free and double-free memory access violations.\nlibgssrpc server applications such as kadmind were vulnerable as they\ncan be instructed to call gss_process_context_token().\n\nCVE-2014-9421: If the MIT krb5 kadmind daemon receives invalid XDR\ndata from an authenticated user, it may have performed use-after-free and\ndouble-free memory access violations while cleaning up the partial\ndeserialization results. Other libgssrpc server applications might also\nbeen vulnerable if they contain insufficiently defensive XDR functions.\n\nCVE-2014-9422: The MIT krb5 kadmind daemon incorrectly accepted\nauthentications to two-component server principals whose first\ncomponent is a left substring of 'kadmin' or whose realm is a left\nprefix of the default realm.\n\nCVE-2014-9423: libgssrpc applications including kadmind output four or\neight bytes of uninitialized memory to the network as part of an\nunused 'handle' field in replies to clients.\n\nBugs fixed:\n- Work around replay cache creation race; (bnc#898439).\n",null,[],[],[],[14,16,18,20,22],{"_key":15},"CVE-2014-5351",{"_key":17},"CVE-2014-5352",{"_key":19},"CVE-2014-9421",{"_key":21},"CVE-2014-9422",{"_key":23},"CVE-2014-9423",[],[],[27,28,29,30,31],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},"2015-01-21T10:07:55Z","2026-02-04T03:04:57.212080Z",{"cisa_kev":35,"cisa_ransomware":35,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[37,43,48,52,56,61,65,69,73],{"url":38,"sources":39,"tags":41},"https://www.suse.com/support/update/announcement/2015/suse-su-20150290-1/",[40],"osv_suse",[42],"Advisory",{"url":44,"sources":45,"tags":46},"https://bugzilla.suse.com/897874",[40],[47],"REPORT",{"url":49,"sources":50,"tags":51},"https://bugzilla.suse.com/898439",[40],[47],{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/912002",[40],[47],{"url":57,"sources":58,"tags":59},"https://www.suse.com/security/cve/CVE-2014-5351",[40],[60],"WEB",{"url":62,"sources":63,"tags":64},"https://www.suse.com/security/cve/CVE-2014-5352",[40],[60],{"url":66,"sources":67,"tags":68},"https://www.suse.com/security/cve/CVE-2014-9421",[40],[60],{"url":70,"sources":71,"tags":72},"https://www.suse.com/security/cve/CVE-2014-9422",[40],[60],{"url":74,"sources":75,"tags":76},"https://www.suse.com/security/cve/CVE-2014-9423",[40],[60],[],[],[],[81,94,98],{"ecosystem":82,"name":83,"vendor":84,"product":85,"cpe_part":9,"purl_type":86,"purl_namespace":84,"purl_name":85,"source":9,"versions":87},"SUSE Linux Enterprise","krb5","suse","krb5&distro=SUSE Linux Enterprise Server 12","rpm",[88],{"version":89,"is_range":90,"range_type":91,"version_start":9,"version_start_type":9,"version_end":92,"version_end_type":93,"fixed_in":9},"lt1_12_1_9_1",true,"ecosystem","1.12.1-9.1","excluding",{"ecosystem":82,"name":83,"vendor":84,"product":95,"cpe_part":9,"purl_type":86,"purl_namespace":84,"purl_name":95,"source":9,"versions":96},"krb5&distro=SUSE Linux Enterprise Server for SAP Applications 12",[97],{"version":89,"is_range":90,"range_type":91,"version_start":9,"version_start_type":9,"version_end":92,"version_end_type":93,"fixed_in":9},{"ecosystem":82,"name":83,"vendor":84,"product":99,"cpe_part":9,"purl_type":86,"purl_namespace":84,"purl_name":99,"source":9,"versions":100},"krb5&distro=SUSE Linux Enterprise Software Development Kit 12",[101],{"version":89,"is_range":90,"range_type":91,"version_start":9,"version_start_type":9,"version_end":92,"version_end_type":93,"fixed_in":9}]