Sun Microsystems Inc. Information for VU#623332

MIT Kerberos 5 contains double free vulnerability in "krb5_recvauth()" function



Vendor Statement

Sun is affected by the Kerberos vulnerability described in MIT Advisory MITKRB5-SA-2005-003 and CERT VU#623332. Sun has published Sun Alert 101810 which is available here:

for this issue.

The Sun Alert is currently unresolved but will be updated once either IDRs or T-patches are available on SunSolve. The Sun Alert will ultimately be updated with the released patch information for the final resolution.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



We have no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.