It has been disclosed that Heimdal, including the ~0.7 version we ship in Samba 4.15 includes a NULL pointer dereference.
Per CERT: "A malicious actor to remotely trigger a NULL pointer dereference using a crafted negTokenInit token."
Samba is not issuing a security release becase:
- Samba security policy does not require us to patch for a simple crash
- The code in question is not used in Samba, as we have our own SPNEGO implementation.
Marking as INVALID (would just as well be WONTFIX - and also FIXED in samba 4.16 and later, as the newer Heimdal snapshot is used there) as Samba is not impacted.
*** This bug has been marked as a duplicate of bug 15155 ***