Candidate: CVE-2013-1923
PublicDate: 2014-01-21 18:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1923
 http://www.openwall.com/lists/oss-security/2013/04/04
Description:
 rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for
 server names during GSSAPI authentication, which might allow remote
 attackers to read otherwise-restricted files via DNS spoofing attacks.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.redhat.com/show_bug.cgi?id=948072
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=707401
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_nfs-utils:
upstream_nfs-utils: released (1:1.2.8-1)
hardy_nfs-utils: ignored (reached end-of-life)
lucid_nfs-utils: ignored (reached end-of-life)
oneiric_nfs-utils: ignored (reached end-of-life)
precise_nfs-utils: ignored (reached end-of-life)
precise/esm_nfs-utils: ignored (end of ESM support, was needed)
quantal_nfs-utils: ignored (reached end-of-life)
raring_nfs-utils: ignored (reached end-of-life)
saucy_nfs-utils: not-affected (1:1.2.8-2ubuntu2)
trusty_nfs-utils: not-affected (1:1.2.8-6ubuntu1)
trusty/esm_nfs-utils: not-affected (1:1.2.8-6ubuntu1)
utopic_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
vivid_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
vivid/stable-phone-overlay_nfs-utils: DNE
vivid/ubuntu-core_nfs-utils: DNE
wily_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
xenial_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
esm-infra/xenial_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
yakkety_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
zesty_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
artful_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
bionic_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
cosmic_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
disco_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
eoan_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
focal_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
groovy_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
hirsute_nfs-utils: not-affected (1:1.2.8-6ubuntu4)
devel_nfs-utils: not-affected (1:1.2.8-6ubuntu4)