Kerberos Client Crash Vulnerability in Fedora Versions

Kerberos Client Crash Vulnerability in Fedora Versions

CVE-2019-14844 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

A flaw was found in, Fedora versions of krb5 from 1.16.1 to, including 1.17.x, in the way a Kerberos client could crash the KDC by sending one of the RFC 4556 "enctypes". A remote unauthenticated user could use this flaw to crash the KDC.

Learn more about our Cis Benchmark Audit For Fedora Family Linux.