Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.
Software | From | Fixed in |
---|---|---|
debian / debian_linux | 3.0 | 3.0.x |
mit / kerberos_5 | - | 1.2.8.x |
openpkg / openpkg | 2.0 | 2.0.x |
openpkg / openpkg | 2.1 | 2.1.x |