Unrated severityNVD Advisory· Published Dec 23, 2019· Updated Aug 4, 2024
CVE-2019-3467
CVE-2019-3467
Description
Debian-edu-config all versions < 2.11.10, a set of configuration files used for Debian Edu, and debian-lan-config < 0.26, configured too permissive ACLs for the Kerberos admin server, which allowed password changes for other Kerberos user principals.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <0.26
<2.11.10+ 1 more
- (no CPE)range: <2.11.10
- (no CPE)range: all versions < 2.11.10
Patches
Vulnerability mechanics
References
10- usn.ubuntu.com/4530-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2019/dsa-4589mitrevendor-advisoryx_refsource_DEBIAN
- www.debian.org/security/2019/dsa-4595mitrevendor-advisoryx_refsource_DEBIAN
- bugs.debian.org/cgi-bin/bugreport.cgimitrex_refsource_MISC
- bugs.debian.org/cgi-bin/bugreport.cgimitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2019/12/msg00023.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/01/msg00012.htmlmitremailing-listx_refsource_MLIST
- seclists.org/bugtraq/2019/Dec/34mitremailing-listx_refsource_BUGTRAQ
- seclists.org/bugtraq/2019/Dec/44mitremailing-listx_refsource_BUGTRAQ
- security-tracker.debian.org/tracker/CVE-2019-3467mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.