USN-924-1 -- krb5 vulnerabilitiesID: oval:org.secpod.oval:def:700183 | Date: (C)2011-01-28 (M)2024-02-08 |
Class: PATCH | Family: unix |
Sol Jerome discovered that the Kerberos kadmind service did not correctly free memory. An unauthenticated remote attacker could send specially crafted traffic to crash the kadmind process, leading to a denial of service. It was discovered that Kerberos did not correctly free memory in the GSSAPI library. If a remote attacker were able to manipulate an application using GSSAPI carefully, the service could crash, leading to a denial of service. It was discovered that Kerberos did not correctly free memory in the GSSAPI and kdb libraries. If a remote attacker were able to manipulate an application using these libraries carefully, the service could crash, leading to a denial of service
Platform: |
Ubuntu 8.10 |
Ubuntu 8.04 |
Ubuntu 9.04 |