{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"<p>MIT Kerberos versions krb5-1.8.1 et  ant\u00e9rieures.</p>","content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 de type pointeur nul est pr\u00e9sente dans MIT Kerberos.\nElle concerne potentiellement toutes les applications mettant en \u0153uvre\nla biblioth\u00e8que de fonctions GSS-API. Cette faille permet \u00e0 un\nutilisateur authentifi\u00e9 malintentionn\u00e9 de provoquer un d\u00e9ni de service \u00e0\ndistance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer aux bulletins de s\u00e9curit\u00e9 des \u00e9diteurs pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2010-1321","url":"https://www.cve.org/CVERecord?id=CVE-2010-1321"}],"links":[{"title":"Bulletins de s\u00e9curit\u00e9 Fedora du 19 mai 2010 :","url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041615.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Suse SUSE-SR:2010:013 du 14 juin 2010    :","url":"http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html"},{"title":"Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2010-0423-1 du 18 mai 2010    :","url":"http://rhn.redhat.com/errata/RHSA-2010-0423.html"},{"title":"Bulletins de s\u00e9curit\u00e9 Fedora du 19 mai 2010 :","url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041645.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Debian DSA-2052 du 24 mai 2010 :","url":"http://www.debian.org/security/2010/dsa-2052"},{"title":"Bulletin de s\u00e9curit\u00e9 HP c02257427 du 23 juin 2010 :","url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427"},{"title":"Bulletins de s\u00e9curit\u00e9 Fedora du 19 mai 2010 :","url":"http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041654.html"},{"title":"Bulletin de s\u00e9curit\u00e9 Ubuntu USN-940-1 du 19 mai 2010 :","url":"http://www.ubuntu.com/usn/usn-940-1"},{"title":"Site de MIT Kerberos :","url":"http://web.mit.edu/kerberos"},{"title":"Bulletin de s\u00e9curit\u00e9 Mandriva MDVSA-2010:100 du 19 mai 2010    :","url":"http://www.mandriva.com/security/advisories?name=MDVSA-2010:100"}],"reference":"CERTA-2010-AVI-219","revisions":[{"description":"version initiale ;","revision_date":"2010-05-19T00:00:00.000000"},{"description":"ajout du bulletin de s\u00e9curit\u00e9 Debian.","revision_date":"2010-05-25T00:00:00.000000"},{"description":"ajout des bulletins de s\u00e9curit\u00e9 Fedora, HP, Mandriva, RedHat, Suse et Ubuntu.","revision_date":"2010-06-25T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans MIT Kerberos permet \u00e0 un utilisateur\ndistant authentifi\u00e9 de provoquer un d\u00e9ni de service.\n","title":"Vuln\u00e9rabilit\u00e9 dans MIT Kerberos","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 MITKRB5-SA-2010-005 du 18 mai 2010","url":"http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-005.txt"}]}