|Category:||Debian Local Security Checks|
|Title:||Debian LTS: Security Advisory for krb5 (DLA-2437-1)|
|Summary:||The remote host is missing an update for the 'krb5'; package(s) announced via the DLA-2437-1 advisory.|
The remote host is missing an update for the 'krb5'
package(s) announced via the DLA-2437-1 advisory.
It was discovered that there was a denial of service vulnerability in
the MIT Kerberos network authentication system, krb5. The lack of a
limit in the ASN.1 decoder could lead to infinite recursion and allow
an attacker to overrun the stack and cause the process to crash.
'krb5' package(s) on Debian Linux.
For Debian 9 'Stretch', this problem has been fixed in version
We recommend that you upgrade your krb5 packages.
Common Vulnerability Exposure (CVE) ID: CVE-2020-28196|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.