4 matches found
Design/Logic Flaw
lib/gssapi/spnego/spnegomech.c in MIT Kerberos 5 aka krb5 before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service incorrect pointer read and process crash via a crafted SPNEGO packet that is mishandled during a gssinquirecontext call...
DEBIAN-CVE-2015-2695
lib/gssapi/spnego/spnegomech.c in MIT Kerberos 5 aka krb5 before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service incorrect pointer read and process crash via a crafted SPNEGO packet that is mishandled during a gssinquirecontext call...
CVE-2015-2695
lib/gssapi/spnego/spnegomech.c in MIT Kerberos 5 aka krb5 before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service incorrect pointer read and process crash via a crafted SPNEGO packet that is mishandled during a gssinquirecontext call...
CVE-2015-2695
CVE-2015-2695 affects MIT Kerberos 5 (krb5) where the krb5 GSS-API SPNEGO mechanism mishandles a context, relying on an inappropriate context handle. This can enable a remote attacker to cause a denial of service via a crafted gss_inquire_context call on a partially-established SPNEGO context, le...