Candidate: CVE-2017-17439
PublicDate: 2017-12-06 15:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17439
 http://www.h5l.org/pipermail/heimdal-discuss/2017-August/000259.html
Description:
 In Heimdal through 7.4, remote unauthenticated attackers are able to crash
 the KDC by sending a crafted UDP packet containing empty data fields for
 client name or realm. The parser would unconditionally dereference NULL
 pointers in that case, leading to a segmentation fault. This is related to
 the _kdc_as_rep function in kdc/kerberos5.c and the
 der_length_visible_string function in lib/asn1/der_length.c.
Ubuntu-Description:
Notes:
 mdeslaur> vulnerability introduced in 7.0
 mdeslaur> heimdal-kdc package is in universe
Bugs:
 https://github.com/heimdal/heimdal/issues/353
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878144
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_heimdal:
 upstream: https://github.com/heimdal/heimdal/commit/1a6a6e462dc2ac6111f9e02c6852ddec4849b887
Tags_heimdal: universe-binary
upstream_heimdal: released (7.5.0+dfsg-1)
precise/esm_heimdal: not-affected (code not present)
trusty_heimdal: not-affected (code not present)
trusty/esm_heimdal: not-affected (code not present)
xenial_heimdal: not-affected (code not present)
esm-infra/xenial_heimdal: not-affected (code not present)
zesty_heimdal: ignored (reached end-of-life)
artful_heimdal: ignored (reached end-of-life)
bionic_heimdal: not-affected (7.5.0+dfsg-1)
cosmic_heimdal: not-affected (7.5.0+dfsg-1)
devel_heimdal: not-affected (7.5.0+dfsg-1)