Launchpad.net

CVE 2011-0284

Double free vulnerability in the prepare_error_as function in do_as_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 through 1.9, when the PKINIT feature is enabled, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via an e_data field containing typed data.

Related bugs and status

CVE-2011-0284 (Candidate) is related to these bugs:

Bug #688464: Wrong default path for kpropd.acl in kpropd man page

Summary				In	Importance	Status
	688464	Wrong default path for kpropd.acl in kpropd man page		krb5 (Ubuntu)	Low	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://web.mit.edu/ker...
REDHAT: RHSA-2011:0356
UBUNTU: USN-1088-1
CERT-VN: VU#943220
BID: 46881
SECTRACK: 1025216
SECUNIA: 43783
VUPEN: ADV-2011-0672
VUPEN: ADV-2011-0673
FEDORA: FEDORA-2011-3462
FEDORA: FEDORA-2011-3464
FEDORA: FEDORA-2011-3547
MANDRIVA: MDVSA-2011:048
OSVDB: 71183
SECUNIA: 43700
SECUNIA: 43760
SECUNIA: 43881
VUPEN: ADV-2011-0680
VUPEN: ADV-2011-0722
VUPEN: ADV-2011-0763
SUSE: SUSE-SR:2011:005
XF: kerberos-perpareerrora...
BUGTRAQ: 20110315 MITKRB5-SA-20...