Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description The Kerberos network authentication system (32-bit)
Version 1.19.3-2 [multilib]


Group Affected Fixed Severity Status Ticket
AVG-436 1.15.1-1 1.15.2-1 Medium Not affected
AVG-415 1.15.1-1 1.15.2-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2017-11462 AVG-415 High Yes Arbitrary code execution
A double free vulnerability has been discovered in MIT Kerberos 5 (aka krb5) allowing attackers to crash the application or possibly execute arbitrary code...
CVE-2017-11368 AVG-436 Medium Yes Denial of service
A denial of service flaw was found in MIT Kerberos krb5kdc service. An authenticated attacker could use this flaw to cause krb5kdc to exit with an assertion...


Date Advisory Group Severity Type
05 Oct 2017 ASA-201710-9 AVG-415 High arbitrary code execution