4 matches found
Fedora 13 : krb5-1.7.1-10.fc13 (2010-8749)
Shawn Emery discovered a remotely-triggerable NULL pointer dereference in the Kerberos GSS-API library which could be used to cause GSS-API-authenticated services to crash. This update incorporates fixes to instead correctly detect the error and return an error code. Note that Tenable Network...
Fedora 12 : krb5-1.7.1-2.fc12 (2010-1722)
This update adds the upstream patch to avoid a potential denial of service in the KDC in versions 1.7 and later CVE-2010-0283. It obsoletes a previous pending update to version 1.7.1, which incorporates a fix to avoid accidentally tripping account lockout logic on AD servers when the user types i...
Fedora 12 : krb5-1.7.1-9.fc12 (2010-8805)
Shawn Emery discovered a remotely-triggerable NULL pointer dereference in the Kerberos GSS-API library which could be used to cause GSS-API-authenticated services to crash. This update incorporates fixes to instead correctly detect the error and return an error code. Note that Tenable Network...
MITKRB5-SA-2009-003 [CVE-2009-3295] KDC denial of service in cross-realm referral processing
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2009-003 MIT krb5 Security Advisory 2009-003 Original release: 2009-12-28 Last update: 2009-12-28 Topic: KDC denial of service in cross-realm referral processing CVE-2009-3295 KDC denial of service in cross-realm referral processing CVSSv2...