Skip to main content

NULL Pointer Dereference


Severity Medium
Score 6.5/10


A NULL Pointer De-reference was found in the way samba kerberos server prior to 4.13.12, 4.14.x prior to 4.14.8 and 4.15.x prior to 4.15.0rc6, handled missing 'sname' in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

  • LOW
  • NONE
  • NONE
  • LOW
  • NONE
  • HIGH

CWE-476 - NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Advisory Timeline

  • Published