CVE-2021-44758
Summary
| CVE | CVE-2021-44758 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-12-26 05:15:00 UTC |
|---|
| Updated | 2023-10-08 09:15:00 UTC |
|---|
| Description | Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| spnego: CVE-2021-44758 send_reject when no mech selected · heimdal/heimdal@f9ec700 · GitHub |
CONFIRM |
github.com |
|
| NULL dereference DoS in SPNEGO acceptors · Advisory · heimdal/heimdal · GitHub |
MISC |
github.com |
|
| Heimdal: Multiple Vulnerabilities (GLSA 202310-06) — Gentoo security |
MISC |
security.gentoo.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 181242 Debian Security Update for heimdal (DSA 5287-1)
- 181249 Debian Security Update for heimdal (DLA 3206-1)
- 183612 Debian Security Update for heimdal (CVE-2021-44758)
- 199102 Ubuntu Security Notification for Heimdal Vulnerabilities (USN-5800-1)
- 283360 Fedora Security Update for heimdal (FEDORA-2022-dba9ba8e2b)
- 283361 Fedora Security Update for heimdal (FEDORA-2022-cbbd105d08)
- 283404 Fedora Security Update for heimdal (FEDORA-2022-2c77cee4b5)
- 502599 Alpine Linux Security Update for heimdal
- 502655 Alpine Linux Security Update for heimdal
- 503994 Alpine Linux Security Update for heimdal
- 710767 Gentoo Linux Heimdal Multiple Vulnerabilities (GLSA 202310-06)
- 904787 Common Base Linux Mariner (CBL-Mariner) Security Update for heimdal (12115)
- 905347 Common Base Linux Mariner (CBL-Mariner) Security Update for heimdal (12115-1)
