RHSA-2014:1389Medium

Red Hat Security Advisory: krb5 security and bug fix update

Published
October 13, 2014
Last Modified
June 27, 2026

🔗 CVE IDs covered (7)

📋 Description

CVE-2013-1418 — krb5: multi-realm KDC null dereference leads to crash CVE-2013-6800 — krb5: KDC remote DoS (NULL pointer dereference and daemon crash) CVE-2014-4341 — krb5: denial of service flaws when handling padding length longer than the plaintext CVE-2014-4342 — krb5: denial of service flaws when handling RFC 1964 tokens CVE-2014-4343 — krb5: double-free flaw in SPNEGO initiators CVE-2014-4344 — krb5: NULL pointer dereference flaw in SPNEGO acceptor for continuation tokens CVE-2014-4345 — krb5: buffer overrun in kadmind with LDAP backend (MITKRB5-SA-2014-001)

🔗 References (16)