Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 265392

Summary: app-crypt/mit-krb5 < 1.6.4 - ASN.1 decoder frees uninitialized pointer {CVE-2009-0846}
Product: Gentoo Security Reporter: Heath Caldwell (RETIRED) <hncaldwell>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: normal CC: kerberos
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2009-002.txt
Whiteboard:
Package list:
Runtime testing required: ---

Description Heath Caldwell (RETIRED) gentoo-dev 2009-04-07 23:57:18 UTC 
From advisory:
...
An ASN.1 decoder can free an uninitialized pointer when decoding an
invalid encoding.  This can cause a Kerberos application to crash, or,
under theoretically possible but unlikely circumstances, execute
arbitrary malicious code.  No exploit is known to exist that would
cause arbitrary code execution.

This is an implementation vulnerability in MIT krb5, and is not a
vulnerability in the Kerberos protocol.
...

Reproducible: Always

Steps to Reproduce:
Comment 1 Robert Buchholz (RETIRED) gentoo-dev 2009-04-08 00:49:24 UTC 
Let's handle this on bug 263398.

*** This bug has been marked as a duplicate of bug 263398 ***