Mandriva Linux Security Advisory : krb5 (MDVSA-2013:275)
Medium Nessus Plugin ID 71029
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated krb5 package fixes security vulnerabily :
If a KDC serves multiple realms, certain requests can cause setup_server_realm() to dereference a NULL pointer, crashing the KDC.
This can be triggered by an unauthenticated user (CVE-2013-1418).
SolutionUpdate the affected packages.