package: krb5-kdc version: 1.8.3+dfsg~beta1-1 severity: grave tags: security
This bug tracks a DOS in krb5-kdc greater than version 1.8. I'll upload the official patch tomorrow. MIT's advisory talks about arbitrary code execution and other attacks; I'm dubious about how practical these are based on how the code is built in Debian, but it's easier to fix promptly than to analyze. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
