DSA-2379-1 krb5 -- severalID: oval:org.secpod.oval:def:600697 | Date: (C)2012-01-30 (M)2022-10-10 |
Class: PATCH | Family: unix |
It was discovered that the Key Distribution Center in Kerberos 5 crashes when processing certain crafted requests: CVE-2011-1528 When the LDAP backend is used, remote users can trigger a KDC daemon crash and denial of service. CVE-2011-1529 When the LDAP or Berkeley DB backend is used, remote users can trigger a NULL pointer dereference in the KDC daemon and a denial of service. The oldstable distribution is not affected by these problems.