CVE-2017-11462

Опубликовано: 13 сент. 2017

Источник: debian

EPSS Низкий

Описание

Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts on error.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
krb5	fixed	1.15.2-1		package
krb5	ignored		stretch	package
krb5	ignored		jessie	package
krb5	ignored		wheezy	package

Примечания

Fixed by: https://github.com/krb5/krb5/commit/56f7b1bc95a2a3eeb420e069e7655fb181ade5cf
http://krbdev.mit.edu/rt/Ticket/Display.html?id=8598

EPSS

Процентиль: 82%

0.01706

Низкий

Связанные уязвимости

CVE-2017-11462

CVSS3: 9.8

ubuntu

больше 8 лет назад

Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts on error.

CVE-2017-11462

CVSS3: 3.7

redhat

больше 8 лет назад

Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts on error.

CVE-2017-11462

CVSS3: 9.8

nvd

больше 8 лет назад

Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts on error.

openSUSE-SU-2017:2712-1

suse-cvrf

больше 8 лет назад

Security update for krb5

SUSE-SU-2017:2659-1

suse-cvrf

больше 8 лет назад

Security update for krb5

EPSS

Процентиль: 82%

0.01706

Низкий