Mandriva Security Advisory MDVSA-2009:098-1 (krb5)

The remote host is missing an update to krb5 announced via advisory MDVSA-2009:098-1. OpenVAS Vulnerability Test $Id: mdksa20090981.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:098-1 krb5 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

CVE-2009-0845

The spnegogssacceptseccontext function in lib/gssapi/spnego/spnegomech.c in MIT Kerberos 5 aka krb5 1.5 through 1.6.3, when SPNEGO is used, allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via invalid ContextFlags data in the reqFlags field in a...