Launchpad CVE tracker

CVE 2004-0772

Double free vulnerabilities in error handling code in krb524d for MIT Kerberos 5 (krb5) 1.2.8 and earlier may allow remote attackers to execute arbitrary code.

Related bugs and status

CVE-2004-0772 (Candidate) is related to these bugs:

Bug #7903: krb5 vulnerabilities (CAN-2004-0644, CAN-2004-0772)

Summary				In	Importance	Status
	7903	krb5 vulnerabilities (CAN-2004-0644, CAN-2004-0772)		Ubuntu	Medium	Fix Released

Bug #22288: libkrb53: Fails to link on powerpc

Summary				In	Importance	Status
	22288	libkrb53: Fails to link on powerpc		krb5 (Ubuntu)	High	Invalid
	22288	libkrb53: Fails to link on powerpc		krb5 (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://web.mit.edu/ker...
CERT: TA04-247A
CERT-VN: VU#350792
DEBIAN: DSA-543
GENTOO: GLSA-200409-09
TRUSTIX: 2004-0045
BID: 11078
MANDRAKE: MDKSA-2004:088
CONECTIVA: CLA-2004:860
BUGTRAQ: 20040913 [OpenPKG-SA-2...
XF: kerberos-krb524d-doubl...
OVAL: oval:org.mitre.oval:de...

Launchpad.net

CVE 2004-0772

Related bugs and status

Related bugs

References