CVE-2007-5971
EPSS 0.08%
Description
Double free vulnerability in the gss_krb5int_make_seal_token_v3 function in lib/gssapi/krb5/k5sealv3.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors.
How to fix CVE-2007-5971
To remediate CVE-2007-5971, upgrade the affected package to a fixed version below.
- Debian/krb5—upgrade to 1.6.dfsg.4~beta1-1 or later
Is CVE-2007-5971 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.6.dfsg.4~beta1-1