漏洞类别:OEL
漏洞等级: 
漏洞信息
Oracle Enterprise Linux has released security update for krb5 to fix the vulnerabilities.
Affected Products:
Oracle Linux 7
漏洞危害
An authenticated attacker with permission to modify a principal entry could use this flaw to cause kadmind to dereference a null pointer and crash by supplying an empty DB argument to the modify_principal command, if kadmind was configured to use the LDAP KDB module.
解决方案
To resolve this issue, upgrade to the latest packages which contain a patch. Refer to Oracle Enterprise Linux advisoryOracle Linux 7 for updates and patch information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论