Robbie Harwood

**Name of the Vulnerable Software and Affected Versions** Fedora versions 1.16.1 through 1.17.x Red Hat Enterprise Linux (affected versions not specified) **Description** The issue exists due to insufficient input validation in the implementation of the Kerberos protocol. It may allow a remote attacker to cause a denial of service. A remote unauthenticated user could exploit this by sending specific RFC 4556 "enctypes" to crash the KDC. **Recommendations** For Fedora versions 1.16.1 through 1.17.x, update to a version that includes the fix for this issue. For Red Hat Enterprise Linux, at the moment, there is no information about a newer version that contains a fix for this vulnerability.