Advisories MDKSA-2007:008: Updated kerberos packages fix vulnerability

[paul]

A vulnerability in the RPC library in Kerberos 1.4.x and 1.5.x as used

in the kadmind administration daemon calls an uninitialized function

pointer in freed memory, which could allow a remote attacker to cause a

Denial of Service and possibly execute arbitrary code via unspecified

vectors.

 

Updated packages are patched to address this issue.