Описание
The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.13.2+dfsg-4 |
| esm-infra-legacy/trusty | released | 1.12+dfsg-2ubuntu5.2 |
| precise | released | 1.10+dfsg~beta1-2ubuntu0.7 |
| trusty | released | 1.12+dfsg-2ubuntu5.2 |
| trusty/esm | released | 1.12+dfsg-2ubuntu5.2 |
| upstream | released | 1.13.2+dfsg-4 |
| vivid | released | 1.12.1+dfsg-18ubuntu0.1 |
| vivid/stable-phone-overlay | released | 1.12.1+dfsg-18ubuntu0.1 |
| vivid/ubuntu-core | released | 1.12.1+dfsg-18ubuntu0.1 |
| wily | released | 1.13.2+dfsg-2ubuntu0.1 |
Показывать по
8.5 High
CVSS2
Связанные уязвимости
The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696.
The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696.
The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c ...
8.5 High
CVSS2