Launchpad.net

CVE 2007-2442

The gssrpc__svcauth_gssapi function in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes kadmind to free an uninitialized pointer during cleanup.

Related bugs and status

CVE-2007-2442 (Candidate) is related to these bugs:

Bug #122907: Please sync krb5 (main) from Debian unstable (main)

Summary				In	Importance	Status
	122907	Please sync krb5 (main) from Debian unstable (main)		krb5 (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://web.mit.edu/ker...
CERT-VN: VU#356961
CERT: TA07-177A
CONFIRM: http://web.mit.edu/ker...
CONFIRM: https://issues.rpath.c...
DEBIAN: DSA-1323
SGI: 20070602-01-P
BID: 24655
SECTRACK: 1018293
SECUNIA: 25821
SECUNIA: 25870
SECUNIA: 25890
SECUNIA: 25894
REDHAT: RHSA-2007:0384
REDHAT: RHSA-2007:0562
SUNALERT: 102914
SUSE: SUSE-SA:2007:038
TRUSTIX: 2007-0021
UBUNTU: USN-477-1
SECUNIA: 25800
SECUNIA: 25801
SECUNIA: 25814
SECUNIA: 25841
SECUNIA: 25888
SECUNIA: 25911
CONFIRM: https://secure-support...
GENTOO: GLSA-200707-11
SECUNIA: 26228
CONFIRM: http://docs.info.apple...
APPLE: APPLE-SA-2007-07-31
BID: 25159
SECUNIA: 26235
SECUNIA: 26033
MANDRIVA: MDKSA-2007:137
FULLDISC: 20070920 VMSA-2007-000...
SECUNIA: 26909
SECUNIA: 27706
VUPEN: ADV-2007-2337
VUPEN: ADV-2007-2354
VUPEN: ADV-2007-2491
VUPEN: ADV-2007-2732
VUPEN: ADV-2007-3229
HP: HPSBUX02544
HP: SSRT100107
SECUNIA: 40346
VUPEN: ADV-2010-1574
OSVDB: 36596
XF: kerberos-gssrpcsvcauth...
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20070626 MITKRB5-SA-20...
BUGTRAQ: 20070628 FLEA-2007-002...
BUGTRAQ: 20070629 TSLSA-2007-00...