2 matches found
The vulnerability in the file lib/kadm5/kadm_rpc_xdr.c of the Kerberos network protocol implementation allows a intruder to cause a service failure.
The vulnerability of the file lib/kadm5/kadmrpcxdr.c, which implements the Kerberos network protocol, is related to the exposure of an uninitialized pointer. Exploiting this vulnerability could allow a malicious actor to cause service failures...
DEBIAN-CVE-2023-36054
lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the keydata array...