CVE-2010-4022

Description

The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in standalone mode, does not properly handle when a worker child process "exits abnormally," which allows remote attackers to cause a denial of service (listening process termination, no new connections, and lack of updates in slave KVC) via unspecified vectors.

How to fix CVE-2010-4022

To remediate CVE-2010-4022, upgrade the affected package to a fixed version below.

• Debian/krb5—upgrade to 1.8.3+dfsg-5 or later

Is CVE-2010-4022 being exploited?

Moderate — EPSS is 9.0%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.8.3+dfsg-5

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2010-4022