CVE-2014-4341
EPSS 14.5%krb5 - security update
發布日:2014/7/20修改日:2026/4/28
描述
MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session.
受影響套件(3)
- Debian/krb5from 0, < 1.12.1+dfsg-4
- Debian/krb5from 0, < 1.8.3+dfsg-4squeeze8
- Debian/krb5from 0, < 1.10.1+dfsg-5+deb7u2