USN-1520-1: Kerberos vulnerabilities
Emmanuel Bouillon discovered that the MIT krb5 Key Distribution Center KDC daemon could free an uninitialized pointer when handling a malformed AS-REQ message. A remote unauthenticated attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2012-1015 Emmanuel...