CVE-2008-0948 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2008-0948 Interim 1 15 2025-11-05T06:16:10Z current 2021-05-30T12:41:48Z 2025-11-05T06:16:10Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2008-0948 Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FO3T5GJ7BPF364RWOCOKYTFW7JWVIJL5/#FO3T5GJ7BPF364RWOCOKYTFW7JWVIJL5 E-Mail link for SUSE-SA:2008:016 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Micro 6.0 SUSE Linux Micro 6.1 krb5-1.20.1-4.11 krb5-1.21.3-160000.2.2 krb5-1.21.3-slfo.1.1_1.2 krb5-1.6.3-133.27.1 krb5-1.6.3-133.48.48.1 krb5-1.6.3-133.49.54.1 krb5-1.6.3-133.49.66.1 krb5-32bit-1.6.3-133.27.1 krb5-32bit-1.6.3-133.48.48.1 krb5-32bit-1.6.3-133.49.54.1 krb5-32bit-1.6.3-133.49.66.1 krb5-apps-clients-1.6.3-133.27.1 krb5-apps-clients-1.6.3-133.48.48.1 krb5-apps-clients-1.6.3-133.49.54.1 krb5-apps-clients-1.6.3-133.49.66.1 krb5-apps-servers-1.6.3-133.27.1 krb5-apps-servers-1.6.3-133.48.48.1 krb5-apps-servers-1.6.3-133.49.54.1 krb5-apps-servers-1.6.3-133.49.66.1 krb5-client-1.21.3-160000.2.2 krb5-client-1.6.3-133.27.1 krb5-client-1.6.3-133.48.48.1 krb5-client-1.6.3-133.49.54.1 krb5-client-1.6.3-133.49.66.1 krb5-devel-1.21.3-160000.2.2 krb5-devel-1.6.3-133.49.66.1 krb5-devel-32bit-1.6.3-133.49.66.1 krb5-plugin-kdb-ldap-1.21.3-160000.2.2 krb5-plugin-preauth-otp-1.21.3-160000.2.2 krb5-plugin-preauth-pkinit-1.21.3-160000.2.2 krb5-plugin-preauth-spake-1.21.3-160000.2.2 krb5-server-1.21.3-160000.2.2 krb5-server-1.6.3-133.27.1 krb5-server-1.6.3-133.48.48.1 krb5-server-1.6.3-133.49.54.1 krb5-server-1.6.3-133.49.66.1 krb5-x86-1.6.3-133.27.1 krb5-x86-1.6.3-133.48.48.1 krb5-x86-1.6.3-133.49.54.1 krb5-x86-1.6.3-133.49.66.1 krb5-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-32bit-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-apps-clients-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-apps-servers-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-client-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-server-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-x86-1.6.3-133.27.1 as a component of SUSE Linux Enterprise Server 11 SP1 krb5-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-32bit-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-apps-clients-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-apps-servers-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-client-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-server-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-x86-1.6.3-133.48.48.1 as a component of SUSE Linux Enterprise Server 11 SP2 krb5-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-32bit-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-apps-clients-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-apps-servers-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-client-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-server-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-x86-1.6.3-133.49.54.1 as a component of SUSE Linux Enterprise Server 11 SP3 krb5-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-32bit-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-apps-clients-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-apps-servers-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-client-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-server-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-x86-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Server 11 SP4 krb5-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-client-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-devel-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-plugin-kdb-ldap-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-plugin-preauth-otp-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-plugin-preauth-pkinit-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-plugin-preauth-spake-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-server-1.21.3-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 krb5-devel-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5-devel-32bit-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5-server-1.6.3-133.49.66.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5-1.20.1-4.11 as a component of SUSE Linux Micro 6.0 krb5-1.21.3-slfo.1.1_1.2 as a component of SUSE Linux Micro 6.1 Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors. CVE-2008-0948 SUSE Linux Enterprise Server 11 SP1:krb5-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP1:krb5-32bit-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP1:krb5-apps-clients-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP1:krb5-apps-servers-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP1:krb5-client-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP1:krb5-server-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP1:krb5-x86-1.6.3-133.27.1 SUSE Linux Enterprise Server 11 SP2:krb5-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP2:krb5-32bit-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP2:krb5-apps-clients-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP2:krb5-apps-servers-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP2:krb5-client-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP2:krb5-server-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP2:krb5-x86-1.6.3-133.48.48.1 SUSE Linux Enterprise Server 11 SP3:krb5-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP3:krb5-32bit-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP3:krb5-apps-clients-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP3:krb5-apps-servers-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP3:krb5-client-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP3:krb5-server-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP3:krb5-x86-1.6.3-133.49.54.1 SUSE Linux Enterprise Server 11 SP4:krb5-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 11 SP4:krb5-32bit-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 11 SP4:krb5-apps-clients-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 11 SP4:krb5-apps-servers-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 11 SP4:krb5-client-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 11 SP4:krb5-server-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 11 SP4:krb5-x86-1.6.3-133.49.66.1 SUSE Linux Enterprise Server 16.0:krb5-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-client-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-devel-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-plugin-kdb-ldap-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-plugin-preauth-otp-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-plugin-preauth-pkinit-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-plugin-preauth-spake-1.21.3-160000.2.2 SUSE Linux Enterprise Server 16.0:krb5-server-1.21.3-160000.2.2 SUSE Linux Enterprise Software Development Kit 11 SP4:krb5-devel-1.6.3-133.49.66.1 SUSE Linux Enterprise Software Development Kit 11 SP4:krb5-devel-32bit-1.6.3-133.49.66.1 SUSE Linux Enterprise Software Development Kit 11 SP4:krb5-server-1.6.3-133.49.66.1 SUSE Linux Micro 6.0:krb5-1.20.1-4.11 SUSE Linux Micro 6.1:krb5-1.21.3-slfo.1.1_1.2 critical 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C