|
|
Log in / Subscribe / Register

krb5: arbitrary code execution

Package(s):krb5 CVE #(s):CVE-2010-1320
Created:April 22, 2010 Updated:July 21, 2010
Description:

From the Red Hat bugzilla entry:

A double-free vulnerability was found in the KDC in MIT krb5 versions 1.7 and later. This flaw could allow an authenticated remote attacker to crash the KDC by inducing the KDC to perform a double-free, or to possibly allow for the execution of arbitrary code (although the latter is believed to be difficult).

Alerts:
Gentoo 201201-13 mit-krb5 2012-01-23
Ubuntu USN-940-1 krb5 2010-05-19
SuSE SUSE-SR:2010:010 krb5, clamav, systemtap, apache2, glib2, mediawiki, apache 2010-04-27
Fedora FEDORA-2010-7130 krb5 2010-04-21
Ubuntu USN-940-2 krb5 2010-07-21
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds