User: Password:
|
|
Subscribe / Log in / New account

krb5: double-free flaw

Package(s):krb5 CVE #(s):CAN-2004-0175 CAN-2005-0488 CAN-2005-1175 CAN-2005-1689
Created:July 12, 2005 Updated:December 6, 2005
Description: The krb5 authentication has a double-free flaw which may be initiated by a remote unauthenticated attacker. Also, a single byte heap overflow in the krb5_unparse_name() function can lead to a denial of service and an information disclosure may be caused by a malicious telnet server. See This report for more information.
Alerts:
Ubuntu USN-224-1 krb4, krb5 2005-12-06
Debian DSA-757-1 krb5 2005-07-17
Trustix TSLSA-2005-0036 kerberos5, 2005-07-14
Mandriva MDKSA-2005:119 krb5 2005-07-13
SuSE SUSE-SR:2005:017 multiple packages 2005-07-13
Gentoo 200507-11 mit-krb5 2005-07-12
Fedora FEDORA-2005-553 krb5 2005-07-12
Red Hat RHSA-2005:562-01 krb5 2005-07-12
Fedora FEDORA-2005-552 krb5 2005-07-12
Red Hat RHSA-2005:567-02 krb5 2005-07-12

(Log in to post comments)


Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds