MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-admin-server" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-doc" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-gss-samples" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-kdc" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-kdc-ldap" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-locales" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-multidev" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-otp" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-pkinit" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "krb5-user" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libgssapi-krb5-2" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libgssrpc4" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libk5crypto3" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkadm5clnt-mit9" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkadm5srv-mit8" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkadm5srv-mit9" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkdb5-7" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkrad-dev" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkrad0" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkrb5-3" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkrb5-dbg" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkrb5-dev" }, { "binary_version": "1.12+dfsg-2ubuntu4.2", "binary_name": "libkrb5support0" } ] }