CVE-2014-4343

Name of the Vulnerable Software and Affected Versions MIT Kerberos 5 (aka krb5) versions 1.10.x through 1.12.x before 1.12.2 mit-krb5 versions prior to 1.13

Description The issue is related to a double free vulnerability in the init ctx reselect function in the SPNEGO initiator. This vulnerability can be exploited by an unauthenticated remote attacker who can spoof packets appearing to be from a GSSAPI acceptor, causing a double-free condition in GSSAPI initiators (clients) using the SPNEGO mechanism. The attacker can achieve this by returning a different underlying mechanism than was proposed by the initiator. This can lead to a denial of service (memory corruption) or possibly execute arbitrary code via network traffic.

Recommendations For MIT Kerberos 5 (aka krb5) versions 1.10.x through 1.12.x before 1.12.2, update to version 1.12.2 or later to resolve the issue. For mit-krb5 versions prior to 1.13, update to version 1.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the SPNEGO mechanism in GSSAPI initiators (clients) until a patch is available.