krb5
Page content
- Author: kikadf
- Vulnerable: 1.10.1-2arcturus1
- Unaffected: 1.10.1-2arcturus2
It was reported that if a privileged user randomized the keys for a service principal, the old key would be returned to them. This could lead to ticket forgery attacks on the service in question.