CVE-2010-0628 (retired)

Priority
Description
The spnego_gss_accept_sec_context function in
lib/gssapi/spnego/spnego_mech.c in the SPNEGO GSS-API functionality in MIT
Kerberos 5 (aka krb5) 1.7 before 1.7.2 and 1.8 before 1.8.1 allows remote
attackers to cause a denial of service (assertion failure and daemon crash)
via an invalid packet that triggers incorrect preparation of an error
token.
Package
Source: krb5 (LP Ubuntu Debian)
Upstream:released (1.8.1)
More Information

Updated: 2019-03-26 11:50:44 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)