Heimdal: Multiple Vulnerabilities

Heimdal: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a KDC. heimdal 2023-10-08 2023-10-08 881429 893722 remote 7.8.0-r1 7.8.0-r1

Heimdal is a free implementation of Kerberos 5.

Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a Kerberos Domain Controller. Please review the CVE identifiers referenced below for details.

Please review the referenced CVE identifiers for details.

There is no known workaround at this time.

All Cross-realm trust vulnerability in Heimdal users should upgrade to the latest version:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=app-crypt/heimdal-7.8.0-r1"

CVE-2019-14870 CVE-2021-44758 CVE-2022-3437 CVE-2022-3671 CVE-2022-41916 CVE-2022-42898 CVE-2022-44640 CVE-2022-44758 CVE-2022-45142 graaff graaff