krb5 -- buffer overflow

2005-01-07T00:00:00
ID DSA-629
Type debian
Reporter Debian
Modified 2005-01-07T00:00:00

Description

A buffer overflow has been discovered in the MIT Kerberos 5 administration library (libkadm5srv) that could lead to the execution of arbitrary code upon exploitation by an authenticated user, not necessarily one with administrative privileges.

For the stable distribution (woody) this problem has been fixed in version 1.2.4-5woody7.

For the unstable distribution (sid) this problem has been fixed in version 1.3.6-1.

We recommend that you upgrade your krb5 packages.