Juniper Networks Information for VU#623332

MIT Kerberos 5 contains double free vulnerability in "krb5_recvauth()" function

Status

Not Affected

Vendor Statement

Juniper Networks' products do not employ Kerberos in any configuration. Juniper's products are not subject to exploitation via the vulnerability in the MIT krb5 software described in VU#623332.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

US-CERT has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.