Launchpad.net

CVE 2013-4134

OpenAFS before 1.4.15, 1.6.x before 1.6.5, and 1.7.x before 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it easier for remote attackers to obtain the service key.

Related bugs and status

CVE-2013-4134 (Candidate) is related to these bugs:

Bug #1204195: OpenAFS Security Advisories 2013-0003 and 2013-0004

		In	Importance	Status
1204195	OpenAFS Security Advisories 2013-0003 and 2013-0004	openafs (Ubuntu)	Critical	Fix Released
1204195	OpenAFS Security Advisories 2013-0003 and 2013-0004	openafs (Ubuntu Precise)	Critical	Fix Released
1204195	OpenAFS Security Advisories 2013-0003 and 2013-0004	openafs (Ubuntu Quantal)	Critical	Fix Released
1204195	OpenAFS Security Advisories 2013-0003 and 2013-0004	openafs (Ubuntu Saucy)	Critical	Fix Released
1204195	OpenAFS Security Advisories 2013-0003 and 2013-0004	openafs (Ubuntu Raring)	Critical	Fix Released
1204195	OpenAFS Security Advisories 2013-0003 and 2013-0004	openafs (Ubuntu Lucid)	Critical	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2013-4134

Related bugs and status

Related bugs

References