USN-5849-1: Heimdal vulnerabilities
8 February 2023
Heimdal could be made to crash if it received specially crafted input.
- heimdal - Heimdal Kerberos Network Authentication Protocol
Helmut Grohne discovered that Heimdal GSSAPI incorrectly handled logical
conditions that are related to memory management operations.
An attacker could possibly use this issue to cause a denial of service.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to restart any application
using Heimdal libraries to make all the necessary changes.