CVE-2013-1416 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2013-1416 Interim 1 30 2025-11-05T05:28:00Z current 2021-05-30T13:09:37Z 2025-11-05T05:28:00Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2013-1416 The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings Magnum Orchestration 7 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3 LTSS SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 krb5 krb5-1.8.6-133.49.121.2 krb5-32bit krb5-32bit-1.8.6-133.49.121.2 krb5-apps-clients krb5-apps-clients-1.8.6-133.49.121.2 krb5-apps-servers krb5-apps-servers-1.8.6-133.49.121.2 krb5-client krb5-client-1.8.6-133.49.121.2 krb5-devel krb5-devel-1.8.6-133.49.121.2 krb5-devel-32bit krb5-devel-32bit-1.8.6-133.49.121.2 krb5-doc krb5-doc-1.8.6-133.49.121.7 krb5-plugin-kdb-ldap krb5-plugin-kdb-ldap-1.8.6-133.49.121.2 krb5-plugin-preauth-otp krb5-plugin-preauth-pkinit krb5-plugin-preauth-pkinit-1.8.6-133.49.121.2 krb5-server krb5-server-1.8.6-133.49.121.2 krb5-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-32bit-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-apps-clients-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-apps-servers-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-client-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-devel-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-devel-32bit-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-doc-1.8.6-133.49.121.7 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-plugin-kdb-ldap-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-plugin-preauth-pkinit-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-server-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA krb5-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-32bit-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-apps-clients-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-apps-servers-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-client-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-devel-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-devel-32bit-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-doc-1.8.6-133.49.121.7 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-plugin-kdb-ldap-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-plugin-preauth-pkinit-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5-server-1.8.6-133.49.121.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA krb5 as a component of Magnum Orchestration 7 krb5 as a component of SUSE Linux Enterprise Desktop 12 SP1 krb5-32bit as a component of SUSE Linux Enterprise Desktop 12 SP1 krb5-client as a component of SUSE Linux Enterprise Desktop 12 SP1 krb5 as a component of SUSE Linux Enterprise Server 11 SP3 LTSS krb5 as a component of SUSE Linux Enterprise Server 11 SP4-LTSS krb5-32bit as a component of SUSE Linux Enterprise Server 11 SP4-LTSS krb5-apps-clients as a component of SUSE Linux Enterprise Server 11 SP4-LTSS krb5-apps-servers as a component of SUSE Linux Enterprise Server 11 SP4-LTSS krb5-client as a component of SUSE Linux Enterprise Server 11 SP4-LTSS krb5-server as a component of SUSE Linux Enterprise Server 11 SP4-LTSS krb5 as a component of SUSE Linux Enterprise Server 12 SP1 krb5-32bit as a component of SUSE Linux Enterprise Server 12 SP1 krb5-client as a component of SUSE Linux Enterprise Server 12 SP1 krb5-doc as a component of SUSE Linux Enterprise Server 12 SP1 krb5-plugin-kdb-ldap as a component of SUSE Linux Enterprise Server 12 SP1 krb5-plugin-preauth-otp as a component of SUSE Linux Enterprise Server 12 SP1 krb5-plugin-preauth-pkinit as a component of SUSE Linux Enterprise Server 12 SP1 krb5-server as a component of SUSE Linux Enterprise Server 12 SP1 krb5 as a component of SUSE Linux Enterprise Server 12 SP2 krb5-32bit as a component of SUSE Linux Enterprise Server 12 SP2 krb5-client as a component of SUSE Linux Enterprise Server 12 SP2 krb5-doc as a component of SUSE Linux Enterprise Server 12 SP2 krb5-plugin-kdb-ldap as a component of SUSE Linux Enterprise Server 12 SP2 krb5-plugin-preauth-otp as a component of SUSE Linux Enterprise Server 12 SP2 krb5-plugin-preauth-pkinit as a component of SUSE Linux Enterprise Server 12 SP2 krb5-server as a component of SUSE Linux Enterprise Server 12 SP2 krb5 as a component of SUSE Linux Enterprise Server 12-LTSS krb5-32bit as a component of SUSE Linux Enterprise Server 12-LTSS krb5-client as a component of SUSE Linux Enterprise Server 12-LTSS krb5-doc as a component of SUSE Linux Enterprise Server 12-LTSS krb5-plugin-kdb-ldap as a component of SUSE Linux Enterprise Server 12-LTSS krb5-plugin-preauth-otp as a component of SUSE Linux Enterprise Server 12-LTSS krb5-plugin-preauth-pkinit as a component of SUSE Linux Enterprise Server 12-LTSS krb5-server as a component of SUSE Linux Enterprise Server 12-LTSS krb5-devel as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5-devel-32bit as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5-server as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 krb5-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 krb5 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 krb5-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 krb5 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request. CVE-2013-1416 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-32bit-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-apps-clients-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-apps-servers-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-client-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-devel-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-devel-32bit-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-doc-1.8.6-133.49.121.7 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-plugin-kdb-ldap-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-plugin-preauth-pkinit-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:krb5-server-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-32bit-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-apps-clients-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-apps-servers-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-client-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-devel-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-devel-32bit-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-doc-1.8.6-133.49.121.7 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-plugin-kdb-ldap-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-plugin-preauth-pkinit-1.8.6-133.49.121.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:krb5-server-1.8.6-133.49.121.2 Magnum Orchestration 7:krb5 SUSE Linux Enterprise Desktop 12 SP1:krb5 SUSE Linux Enterprise Desktop 12 SP1:krb5-32bit SUSE Linux Enterprise Desktop 12 SP1:krb5-client SUSE Linux Enterprise Server 11 SP3 LTSS:krb5 SUSE Linux Enterprise Server 11 SP4-LTSS:krb5 SUSE Linux Enterprise Server 11 SP4-LTSS:krb5-32bit SUSE Linux Enterprise Server 11 SP4-LTSS:krb5-apps-clients SUSE Linux Enterprise Server 11 SP4-LTSS:krb5-apps-servers SUSE Linux Enterprise Server 11 SP4-LTSS:krb5-client SUSE Linux Enterprise Server 11 SP4-LTSS:krb5-server SUSE Linux Enterprise Server 12 SP1:krb5 SUSE Linux Enterprise Server 12 SP1:krb5-32bit SUSE Linux Enterprise Server 12 SP1:krb5-client SUSE Linux Enterprise Server 12 SP1:krb5-doc SUSE Linux Enterprise Server 12 SP1:krb5-plugin-kdb-ldap SUSE Linux Enterprise Server 12 SP1:krb5-plugin-preauth-otp SUSE Linux Enterprise Server 12 SP1:krb5-plugin-preauth-pkinit SUSE Linux Enterprise Server 12 SP1:krb5-server SUSE Linux Enterprise Server 12 SP2:krb5 SUSE Linux Enterprise Server 12 SP2:krb5-32bit SUSE Linux Enterprise Server 12 SP2:krb5-client SUSE Linux Enterprise Server 12 SP2:krb5-doc SUSE Linux Enterprise Server 12 SP2:krb5-plugin-kdb-ldap SUSE Linux Enterprise Server 12 SP2:krb5-plugin-preauth-otp SUSE Linux Enterprise Server 12 SP2:krb5-plugin-preauth-pkinit SUSE Linux Enterprise Server 12 SP2:krb5-server SUSE Linux Enterprise Server 12-LTSS:krb5 SUSE Linux Enterprise Server 12-LTSS:krb5-32bit SUSE Linux Enterprise Server 12-LTSS:krb5-client SUSE Linux Enterprise Server 12-LTSS:krb5-doc SUSE Linux Enterprise Server 12-LTSS:krb5-plugin-kdb-ldap SUSE Linux Enterprise Server 12-LTSS:krb5-plugin-preauth-otp SUSE Linux Enterprise Server 12-LTSS:krb5-plugin-preauth-pkinit SUSE Linux Enterprise Server 12-LTSS:krb5-server SUSE Linux Enterprise Software Development Kit 11 SP4:krb5 SUSE Linux Enterprise Software Development Kit 11 SP4:krb5-devel SUSE Linux Enterprise Software Development Kit 11 SP4:krb5-devel-32bit SUSE Linux Enterprise Software Development Kit 11 SP4:krb5-server SUSE Linux Enterprise Software Development Kit 12 SP1:krb5 SUSE Linux Enterprise Software Development Kit 12 SP1:krb5-devel SUSE Linux Enterprise Software Development Kit 12 SP2:krb5 SUSE Linux Enterprise Software Development Kit 12 SP2:krb5-devel low 4 AV:N/AC:L/Au:S/C:N/I:N/A:P