It was reported that in all versions of MIT krb5, an authenticated attacker with permission to modify a principal entry can cause kadmind to dereference a null pointer by supplying an empty DB argument to the modify_principal command, if kadmind is configured to use the LDAP KDB module.
Created krb5 tracking bugs for this issue:
Affects: fedora-all [bug 1319617]
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2016:2591 https://rhn.redhat.com/errata/RHSA-2016-2591.html