MGASA-2013-0335

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2013-0335.html
Import Source
https://advisories.mageia.org/MGASA-2013-0335.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2013-0335
Related
Published
2013-11-20T20:38:57Z
Modified
2013-11-20T20:38:53Z
Summary
Updated krb5 package fixes security vulnerabily
Details

If a KDC serves multiple realms, certain requests can cause setupserverrealm() to dereference a null pointer, crashing the KDC. This can be triggered by an unauthenticated user (CVE-2013-1418).

References
Credits

Affected packages

Mageia:2 / krb5

Package

Name
krb5
Purl
pkg:rpm/mageia/krb5?distro=mageia-2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.9.2-2.7.mga2

Ecosystem specific 

{
    "section": "core"
}