MGASA-2021-0543

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2021-3671

Published: 08 Dec 2021, 20:04

Last modified:16 Apr 2026, 04:24

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

08 Dec 2021, 20:04

Published

Vulnerability first disclosed

16 Apr 2026, 04:24

Last Modified

Vulnerability information updated

Description

Updated heimdal packages fix security vulnerability A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash a samba server using heimdal

Affected Systems

mageia•heimdal
< 7.7.0-5.1.mga8

References (3)

https://advisories.mageia.org/MGASA-2021-0543.html
https://bugs.mageia.org/show_bug.cgi?id=29658
https://ubuntu.com/security/CVE-2021-3671