Wind River Support Network

HomeDefectsLIN6-8084

Fixed

LIN6-8084 : Security Advisory - krb5 - CVE-2014-4342

Created: Aug 3, 2014 Updated: Dec 3, 2018

Resolved Date: Sep 22, 2014

Found In Version: 6.0

Fix Version: 6.0.0.13

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read or NULL pointer dereference, and application crash) by injecting invalid tokens into a GSSAPI application session.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4342

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38