The MITRE CVE dictionary describes this issue as:
The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow authenticated users to execute arbitrary code via a heap-based buffer overflow.
Red Hat security errata
|Red Hat Enterprise Linux version 2.1 (krb5)||RHSA-2005:012||January 19, 2005|
|Red Hat Enterprise Linux version 3 (krb5)||RHSA-2005:012||January 19, 2005|
|Red Hat Enterprise Linux version 4 (krb5)||RHSA-2005:045||February 15, 2005|
This page is generated automatically and has not been checked for errors or omissions.
For clarification or corrections please contact the Red Hat Security Response Team.