CVE Vulnerabilities

CVE-2007-5971

Published: Dec 06, 2007 | Modified: Oct 15, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.9 MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
LOW

Double free vulnerability in the gss_krb5int_make_seal_token_v3 function in lib/gssapi/krb5/k5sealv3.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple 10.4.11 (including) 10.4.11 (including)
Mac_os_x Apple 10.5.2 (including) 10.5.2 (including)
Mac_os_x_server Apple 10.4.11 (including) 10.4.11 (including)
Mac_os_x_server Apple 10.5.2 (including) 10.5.2 (including)
Krb5 Ubuntu dapper *
Krb5 Ubuntu edgy *
Krb5 Ubuntu feisty *
Krb5 Ubuntu gutsy *
Krb5 Ubuntu hardy *
Krb5 Ubuntu jaunty *
Krb5 Ubuntu upstream *
Red Hat Enterprise Linux 4 RedHat krb5-0:1.3.4-54.el4_6.1 *
Red Hat Enterprise Linux 5 RedHat krb5-0:1.6.1-17.el5_1.1 *

References