Mandriva Linux Security Advisory 2011-184 - The process_tgs_req function in do_tgs_req.c in the Key Distribution Center 1.9 through 1.9.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS request that triggers an error other than the KRB5_KDB_NOENTRY error. The updated packages have been patched to correct this issue.
4932acaac14fc272e384b8a30871d6a98ebaed4dbd26dd9625c16adf9d22648c