5 matches found
EUVD-2014-9242
Malware in sbrugna...
Double free
The authgssapiunwrapdata function in lib/rpc/authgssapimisc.c in MIT Kerberos 5 aka krb5 through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR deserialization, which allows remote authenticated users to cause a denial of service use-after-free and...
CVE-2014-9421
The authgssapiunwrapdata function in lib/rpc/authgssapimisc.c in MIT Kerberos 5 aka krb5 through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR deserialization, which allows remote authenticated users to cause a denial of service use-after-free and...
CVE-2014-9421
CVE-2014-9421 affects MIT Kerberos krb5 (lib/rpc/auth_gssapi_misc.c) where partial XDR deserialization can lead to a denial of service (use-after-free and double free) and possibly arbitrary code execution by remote authenticated users through malformed XDR data, demonstrated via kadmind traffic....
CVE-2014-9421
The authgssapiunwrapdata function in lib/rpc/authgssapimisc.c in MIT Kerberos 5 aka krb5 through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR deserialization, which allows remote authenticated users to cause a denial of service use-after-free and...