AVG-1119 log

Package pam-krb5
Status Fixed
Severity Medium
Type arbitrary code execution
Affected 4.8-1
Fixed 4.9-1
Current 4.9-1 [community]
Ticket None
Created Tue Mar 31 08:23:38 2020
Issue Severity Remote Type Description
CVE-2020-10595 Medium Yes Arbitrary code execution
pam-krb5 before 4.9 has a buffer overflow that might cause remote code execution in situations involving supplemental prompting by a Kerberos library. It...
Date Advisory Package Description
01 Apr 2020 ASA-202004-5 pam-krb5 arbitrary code execution
References
https://mailman.mit.edu/pipermail/kerberos/2020-March/022444.html
https://www.openwall.com/lists/oss-security/2020/03/31/1