Sharwan Ram

**Name of the Vulnerable Software and Affected Versions** MIT krb5 versions 1.6 or later **Description** The issue is related to a null pointer dereference in the Kerberos authentication protocol, which can lead to a denial of service. An authenticated kadmin with permission to add principals to an LDAP Kerberos database can exploit this by supplying tagged data internal to the database module, causing a denial of service or bypassing a DN container check. **Recommendations** For MIT krb5 versions 1.6 or later, consider restricting access to the kadmin functionality to prevent exploitation until a patch is available. As a temporary workaround, avoid using the database module with tagged data that is internal to it. At the moment, there is no information about a newer version that contains a fix for this vulnerability.