CVE-2007-1216 — Double Free in Kerberos 5

CWE-415 — Double Free9 documents8 sources

Severity

9.0CRITICALNVD

EPSS

25.9%

top 3.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

MIT Krb5 MIT Kerberos 5 Canonical Ubuntu Linux +1 more

Timeline

PublishedApr 6

Latest updateMay 3

Description

Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal.c), as used by the Kerberos administration daemon (kadmind) in MIT krb5 before 1.6.1, when used with the authentication method provided by the RPCSEC_GSS RPC library, allows remote authenticated users to execute arbitrary code and modify the Kerberos key database via a message with an "an invalid direction encoding".

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages2 packages

▶NVDmit/kerberos_5< 1.6.1

▶Debianmit/krb5< 1.4.4-8+3

Also affects: Debian Linux 3.1, 4.0, Ubuntu Linux 5.10, 6.06, 6.10

Patches

Patch: web.mit.edu ↗Patch: web.mit.edu ↗

🔴Vulnerability Details

GHSA

GHSA-5j9h-62w2-p327: Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal↗2022-05-03

▶

OSV

CVE-2007-1216: Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal↗2007-04-06

▶

CVEList

CVE-2007-1216: Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal↗2007-04-06

▶

📋Vendor Advisories

Ubuntu

krb5 vulnerabilities↗2007-04-04

▶

Red Hat

krb5 double free flaw↗2007-04-03

▶

Debian

CVE-2007-1216: krb5 - Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal.c), a...↗2007

▶

💬Community

Bugzilla

CVE-2007-1216 krb5 double free flaw↗2007-03-08

▶