CVE-2016-8619: curl: Double-free in krb5 code

Severity: Critical

CVSS Score: 9.8

The function `read_data()` in security.c in curl before version 7.51.0 is vulnerable to memory double free.