CVE-2021-44758

Опубликовано: 26 дек. 2022

Источник: debian

Описание

Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
heimdal	fixed	7.8.git20221115.a6cf945+dfsg-1		package

Примечания

https://github.com/heimdal/heimdal/security/advisories/GHSA-69h9-669w-88xv
https://github.com/heimdal/heimdal/commit/f9ec7002cdd526ae84fbacbf153162e118f22580 (heimdal-7.7.1)

Связанные уязвимости

CVE-2021-44758

CVSS3: 7.5

ubuntu

около 3 лет назад

Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept.

CVE-2021-44758

CVSS3: 7.5

nvd

около 3 лет назад

Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept.

CVE-2021-44758

CVSS3: 7.5

msrc

больше 1 года назад

Описание отсутствует

openSUSE-SU-2023:0020-1

suse-cvrf

около 3 лет назад

Security update for libheimdal

openSUSE-SU-2023:0019-1

suse-cvrf

около 3 лет назад

Security update for libheimdal