PublicDate: 2007-06-26 22:30:00 UTC
Candidate: CVE-2007-2443
References:
 https://ubuntu.com/security/notices/USN-477-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2443
Description:
 Integer signedness error in the gssrpc__svcauth_unix function in
 svc_auth_unix.c in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and
 earlier might allow remote attackers to execute arbitrary code via a
 negative length value.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_krb5: released (1.4.3-5ubuntu0.6)
edgy_krb5: released (1.4.3-9ubuntu1.5)
feisty_krb5: released (1.4.4-5ubuntu3.3)
devel_krb5: released (1.6.dfsg.1-7)
upstream_krb5: needs-triage