Bug#991365: krb5: CVE-2021-36222

control: severity -1 important Salvatore> The following vulnerability was published for krb5. Salvatore> CVE-2021-36222[0]: | sending a request containing a Salvatore> PA-ENCRYPTED-CHALLENGE padata element | without using Salvatore> FAST could result in null dereference in the KDC

Processed: Re: Bug#991365: krb5: CVE-2021-36222

Processing control commands: > severity -1 important Bug #991365 [src:krb5] krb5: CVE-2021-36222 Severity set to 'important' from 'grave' -- 991365: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991365 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

Bug#991365: krb5: CVE-2021-36222

Source: krb5 Version: 1.18.3-5 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: car...@debian.org, Debian Security Team Hi, The following vulnerability was published for krb5. CVE-2021-36222[0]: | sending a request containing a PA-ENCRYPTED-CHALLENGE padat