CVE-2007-5471

Name of the Vulnerable Software and Affected Versions: libgssapi versions before 0.6-13.7

Description: The issue allows remote attackers to cause a denial of service, resulting in the daemon exit, via a GSS-TSIG request. This problem occurs when the libgssapi library terminates upon an initialization error, which can be triggered within a chroot configuration or other invalid configuration. It is likely that other daemons attempting to initialize this library are also affected.

Recommendations: For libgssapi versions before 0.6-13.7, update to version 0.6-13.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the GSS-TSIG request to minimize the risk of exploitation.