AVG-1119 log
| Package | pam-krb5 |
| Status | Fixed |
| Severity | Medium |
| Type | arbitrary code execution |
| Affected | 4.8-1 |
| Fixed | 4.9-1 |
| Current | 4.11-3 [extra] |
| Ticket | None |
| Created | Tue Mar 31 08:23:38 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-10595 | Medium | Yes | Arbitrary code execution | pam-krb5 before 4.9 has a buffer overflow that might cause remote code execution in situations involving supplemental prompting by a Kerberos library. It... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 01 Apr 2020 | ASA-202004-5 | pam-krb5 | arbitrary code execution |
| References |
|---|
https://mailman.mit.edu/pipermail/kerberos/2020-March/022444.html https://www.openwall.com/lists/oss-security/2020/03/31/1 |