The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) prior to 1.18.5 and 1.19.x prior to 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mit kerberos 5 |
||
fedoraproject fedora 33 |
||
debian debian linux 9.0 |
||
starwindsoftware starwind virtual san v8r13 |
||
oracle communications cloud native core network slice selection function 22.1.0 |