pkg:Alpine/heimdal

All known vulnerabilities

• CRITICAL9.8CVE-2022-44640Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distri…
  from 0, < 7.7.1-r0
• HIGH8.8CVE-2022-42898krb5 - security update
  from 0, < 7.7.1-r0
• HIGH8.1CVE-2017-11103heimdal - security update
  from 0, < 7.4.0-r0
• HIGH7.5CVE-2022-45142heimdal - security update
  from 0, < 7.7.1-r1
• HIGH7.5CVE-2021-44758Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID an…
  from 0, < 7.7.1-r0
• HIGH7.5CVE-2022-41916Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos.
  from 0, < 7.7.1-r0
• HIGH7.5CVE-2018-16860heimdal - security update
  from 0, < 7.5.0-r4
• HIGH7.5CVE-2017-17439heimdal - security update
  from 0, < 7.4.0-r2
• HIGH7.4CVE-2019-12098In the client side of Heimdal before 7.6.0, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack.
  from 0, < 7.5.0-r5
• MEDIUM6.5CVE-2022-3437A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal.
  from 0, < 7.7.1-r0
• MEDIUM6.5CVE-2021-3671heimdal - security update
  from 0, < 7.7.1-r0
• MEDIUM5.4CVE-2019-14870heimdal - security update
  from 0, < 7.7.1-r0