[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-2310-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":50,"duplicates":51,"related":52,"reserved_at":9,"published_at":62,"modified_at":63,"state":9,"summary":64,"references_raw":66,"kevs":114,"epss":9,"epss_history":115,"metrics":116,"affected":117},"USN-2310-1","krb5 vulnerabilities\n\nIt was discovered that Kerberos incorrectly handled certain crafted Draft 9\nrequests. A remote attacker could use this issue to cause the daemon to\ncrash, resulting in a denial of service. This issue only affected Ubuntu\n12.04 LTS. (CVE-2012-1016)\n\nIt was discovered that Kerberos incorrectly handled certain malformed\nKRB5_PADATA_PK_AS_REQ AS-REQ requests. A remote attacker could use this\nissue to cause the daemon to crash, resulting in a denial of service. This\nissue only affected Ubuntu 10.04 LTS and Ubuntu 12.04 LTS. (CVE-2013-1415)\n\nIt was discovered that Kerberos incorrectly handled certain crafted TGS-REQ\nrequests. A remote authenticated attacker could use this issue to cause the\ndaemon to crash, resulting in a denial of service. This issue only affected\nUbuntu 10.04 LTS and Ubuntu 12.04 LTS. (CVE-2013-1416)\n\nIt was discovered that Kerberos incorrectly handled certain crafted\nrequests when multiple realms were configured. A remote attacker could use\nthis issue to cause the daemon to crash, resulting in a denial of service.\nThis issue only affected Ubuntu 10.04 LTS and Ubuntu 12.04 LTS.\n(CVE-2013-1418, CVE-2013-6800)\n\nIt was discovered that Kerberos incorrectly handled certain invalid tokens.\nIf a remote attacker were able to perform a machine-in-the-middle attack, this\nflaw could be used to cause the daemon to crash, resulting in a denial of\nservice. (CVE-2014-4341, CVE-2014-4342)\n\nIt was discovered that Kerberos incorrectly handled certain mechanisms when\nused with SPNEGO. If a remote attacker were able to perform a\nmachine-in-the-middle attack, this flaw could be used to cause clients to\ncrash, resulting in a denial of service. (CVE-2014-4343)\n\nIt was discovered that Kerberos incorrectly handled certain continuation\ntokens during SPNEGO negotiations. A remote attacker could use this issue\nto cause the daemon to crash, resulting in a denial of service.\n(CVE-2014-4344)\n\nTomas Kuthan and Greg Hudson discovered that the Kerberos kadmind daemon\nincorrectly handled buffers when used with the LDAP backend. A remote\nattacker could use this issue to cause the daemon to crash, resulting in a\ndenial of service, or possibly execute arbitrary code. (CVE-2014-4345)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48],{"_key":15},"CVE-2012-1016",{"_key":17},"CVE-2013-1416",{"_key":19},"CVE-2013-1418",{"_key":21},"CVE-2013-6800",{"_key":23},"CVE-2014-4341",{"_key":25},"CVE-2014-4342",{"_key":27},"CVE-2014-4343",{"_key":29},"CVE-2014-4344",{"_key":31},"CVE-2014-4345",{"_key":33},"UBUNTU-CVE-2012-1016",{"_key":35},"UBUNTU-CVE-2013-1416",{"_key":37},"UBUNTU-CVE-2013-1418",{"_key":39},"UBUNTU-CVE-2013-6800",{"_key":41},"UBUNTU-CVE-2014-4341",{"_key":43},"UBUNTU-CVE-2014-4342",{"_key":45},"UBUNTU-CVE-2014-4343",{"_key":47},"UBUNTU-CVE-2014-4344",{"_key":49},"UBUNTU-CVE-2014-4345",[],[],[53,54,55,56,57,58,59,60,61],{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},"2014-08-11T13:20:42Z","2026-04-22T08:58:35.533158Z",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[67,73,78,82,86,90,94,98,102,106,110],{"url":68,"sources":69,"tags":71},"https://ubuntu.com/security/notices/USN-2310-1",[70],"osv_ubuntu",[72],"Advisory",{"url":74,"sources":75,"tags":76},"https://ubuntu.com/security/CVE-2012-1016",[70],[77],"REPORT",{"url":79,"sources":80,"tags":81},"https://ubuntu.com/security/CVE-2013-1415",[70],[77],{"url":83,"sources":84,"tags":85},"https://ubuntu.com/security/CVE-2013-1416",[70],[77],{"url":87,"sources":88,"tags":89},"https://ubuntu.com/security/CVE-2013-1418",[70],[77],{"url":91,"sources":92,"tags":93},"https://ubuntu.com/security/CVE-2013-6800",[70],[77],{"url":95,"sources":96,"tags":97},"https://ubuntu.com/security/CVE-2014-4341",[70],[77],{"url":99,"sources":100,"tags":101},"https://ubuntu.com/security/CVE-2014-4342",[70],[77],{"url":103,"sources":104,"tags":105},"https://ubuntu.com/security/CVE-2014-4343",[70],[77],{"url":107,"sources":108,"tags":109},"https://ubuntu.com/security/CVE-2014-4344",[70],[77],{"url":111,"sources":112,"tags":113},"https://ubuntu.com/security/CVE-2014-4345",[70],[77],[],[],[],[118],{"ecosystem":119,"name":120,"vendor":121,"product":120,"cpe_part":9,"purl_type":122,"purl_namespace":121,"purl_name":120,"source":9,"versions":123},"Ubuntu","krb5","ubuntu","deb",[124],{"version":125,"is_range":126,"range_type":127,"version_start":9,"version_start_type":9,"version_end":128,"version_end_type":129,"fixed_in":9},"lt1_12+dfsg_2ubuntu4_2",true,"ecosystem","1.12+dfsg-2ubuntu4.2","excluding"]