3 matches found
SUSE CVE-2007-5901
Use-after-free vulnerability in the gssindicatemechs function in lib/gssapi/mechglue/ginitialize.c in MIT Kerberos 5 krb5 has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code...
UBUNTU-CVE-2022-3116
The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash...
DEBIAN-CVE-2014-5352
The krb5gssprocesscontexttoken function in lib/gssapi/krb5/processcontexttoken.c in the libgssapikrb5 library in MIT Kerberos 5 aka krb5 through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly maintain security-context handles, which allows remote authenticated users to...