DSA-4944-1 krb5 -- krb5ID: oval:org.secpod.oval:def:605583 | Date: (C)2021-07-27 (M)2023-11-10 |
Class: PATCH | Family: unix |
It was discovered that the Key Distribution Center in krb5, the MIT implementation of Kerberos, is prone to a NULL pointer dereference flaw. An unauthenticated attacker can take advantage of this flaw to cause a denial of service by sending a request containing a PA-ENCRYPTED-CHALLENGE padata element without using FAST.
Product: |
libk5crypto3 |
krb5-kpropd |
krb5-otp |
libkdb5-9 |
krb5-gss-samples |
krb5-user |
krb5-multidev |
krb5-locales |
libgssrpc4 |
libkrb5support0 |
libgssapi-krb5-2 |
krb5-doc |
libkrad-dev |
krb5-k5tls |
libkrad0 |
libkrb5-dev |
libkadm5srv-mit11 |
krb5-pkinit |
libkrb5-3 |
libkrb5-dbg |
krb5-kdc |
libkadm5clnt-mit11 |
krb5-admin-server |