CVE-2003-0082

Name of the Vulnerable Software and Affected Versions krb5-workstation versions 1.1.1 through 1.2.7 krb5-devel versions 1.1.1 through 1.2.7 krb5-configs version 1.1.1 krb5-server versions 1.1.1 through 1.2.7 krb5-libs versions 1.1.1 through 1.2.7 krb5 versions 1.1.1 through 1.2.7

Description The issue affects the Kerberos 5 (krb5) package in Red Hat Linux, allowing remote exploitation that may lead to a violation of confidentiality, integrity, and availability of protected information. The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier is vulnerable to a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap.

Recommendations For krb5-workstation versions 1.1.1 through 1.2.7, update to a version later than 1.2.7. For krb5-devel versions 1.1.1 through 1.2.7, update to a version later than 1.2.7. For krb5-configs version 1.1.1, update to a version later than 1.1.1. For krb5-server versions 1.1.1 through 1.2.7, update to a version later than 1.2.7. For krb5-libs versions 1.1.1 through 1.2.7, update to a version later than 1.2.7. For krb5 versions 1.1.1 through 1.2.7, update to a version later than 1.2.7.