Double free vulnerability in the init_ctx_reselect function in the SPNEGO initiator in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.10.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via network traffic that appears to come from an intended acceptor, but specifies a security mechanism different from the one proposed by the initiator.
2014-08-14T05:01:49.897
2025-04-12T10:46:40.837
Deferred
CVSSv2: 7.6 (HIGH)
AV:N/AC:H/Au:N/C:C/I:C/A:C
4.9
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | debian | debian_linux | 7.0 | Yes |
Application | mit | kerberos_5 | 1.10 | Yes |
Application | mit | kerberos_5 | 1.10.1 | Yes |
Application | mit | kerberos_5 | 1.10.2 | Yes |
Application | mit | kerberos_5 | 1.10.3 | Yes |
Application | mit | kerberos_5 | 1.10.4 | Yes |
Application | mit | kerberos_5 | 1.11 | Yes |
Application | mit | kerberos_5 | 1.11.1 | Yes |
Application | mit | kerberos_5 | 1.11.2 | Yes |
Application | mit | kerberos_5 | 1.11.3 | Yes |
Application | mit | kerberos_5 | 1.11.4 | Yes |
Application | mit | kerberos_5 | 1.11.5 | Yes |
Application | mit | kerberos_5 | 1.12 | Yes |
Application | mit | kerberos_5 | 1.12.1 | Yes |
Operating System | redhat | enterprise_linux_desktop | 7.0 | Yes |
Operating System | redhat | enterprise_linux_hpc_node | 7.0 | Yes |
Operating System | redhat | enterprise_linux_server | 7.0 | Yes |
Operating System | redhat | enterprise_linux_workstation | 7.0 | Yes |