CVE-2007-5901 in Ubuntu

CVE-2007-5901

Priority

Description

Use-after-free vulnerability in the gss_indicate_mechs function in
lib/gssapi/mechglue/g_initialize.c in MIT Kerberos 5 (krb5) has unknown
impact and attack vectors. NOTE: this might be the result of a typo in the
source code.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5901
https://usn.ubuntu.com/usn/usn-924-1

Notes

kees	upstream did not publish a security update for this issue

Package

Source: krb5 (LP Ubuntu Debian)

Upstream:

released

Patches:

Upstream:

http://src.mit.edu/fisheye/browse/krb5/trunk/src/lib/gssapi/mechglue/g_initialize.c?r1=19831&r2=20178

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2019-12-05 20:46:17 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)