CVE-2013-4122
Description
Cyrus SASL 2.1.23, 2.1.26, and earlier does not properly handle when a NULL value is returned upon an error by the crypt function as implemented in glibc 2.17 and later, which allows remote attackers to cause a denial of service (thread crash and consumption) via (1) an invalid salt or, when FIPS-140 is enabled, a (2) DES or (3) MD5 encrypted password, which triggers a NULL pointer dereference.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | | |
| debian | bookworm | fixed | 2.1.26.dfsg1-14 |
| debian | bullseye | fixed | 2.1.26.dfsg1-14 |
| debian | forky | fixed | 2.1.26.dfsg1-14 |
| debian | sid | fixed | 2.1.26.dfsg1-14 |
| debian | trixie | fixed | 2.1.26.dfsg1-14 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| cmu | cyrus-sasl | {"endIncluding":"2.1.26"} | |
| cmu | cyrus-sasl | 1.5.28 | |
| cmu | cyrus-sasl | 2.1.19 | |
| cmu | cyrus-sasl | 2.1.20 | |
| cmu | cyrus-sasl | 2.1.21 | |
| cmu | cyrus-sasl | 2.1.22 | |
| cmu | cyrus-sasl | 2.1.23 | |
| cmu | cyrus-sasl | 2.1.24 | |
| cmu | cyrus-sasl | 2.1.25 | |
| gnu | glibc | 2.2 | |
| gnu | glibc | 2.2.1 | |
| gnu | glibc | 2.2.2 | |
| gnu | glibc | 2.2.3 | |
| gnu | glibc | 2.2.4 | |
| gnu | glibc | 2.2.5 | |
| gnu | glibc | 2.3 | |
| gnu | glibc | 2.3.1 | |
| gnu | glibc | 2.3.2 | |
| gnu | glibc | 2.3.3 | |
| gnu | glibc | 2.3.4 | |
| gnu | glibc | 2.3.5 | |
| gnu | glibc | 2.3.6 | |
| gnu | glibc | 2.3.10 | |
| gnu | glibc | 2.4 | |
| gnu | glibc | 2.5 | |
| gnu | glibc | 2.5.1 | |
| gnu | glibc | 2.6 | |
| gnu | glibc | 2.6.1 | |
| gnu | glibc | 2.7 | |
| gnu | glibc | 2.8 | |
| gnu | glibc | 2.9 | |
| gnu | glibc | 2.17 | |
| gnu | glibc | 2.18 | |
References
- https://www.suse.com/security/cve/CVE-2013-4122.html
- http://git.cyrusimap.org/cyrus-sasl/commit/?id=dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d
- http://security.gentoo.org/glsa/glsa-201309-01.xml
- http://www.debian.org/security/2015/dsa-3368
- http://www.openwall.com/lists/oss-security/2013/07/12/3
- http://www.openwall.com/lists/oss-security/2013/07/12/6
- http://www.openwall.com/lists/oss-security/2013/07/13/1
- http://www.openwall.com/lists/oss-security/2013/07/15/1
- http://www.ubuntu.com/usn/USN-2755-1
- https://www.linuxquestions.org/questions/slackware-14/%5Bslackware-current%5D-glibc-2-17-shadow-and-other-penumbrae-4175461061/
- https://security-tracker.debian.org/tracker/CVE-2013-4122
CWEs
CWE-189
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.