3 kerberos security issues
Alexander Bergmann
abergmann at suse.com
Fri Mar 1 07:13:05 EST 2024
Hi everyone,
We got notified via NVD about 3 new security issues. Right now there
seams to be no upstream reference. Could someone please comment on this?
CVE-2024-26458: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
CVE-2024-26461: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
CVE-2024-26462: Memory leak at /krb5/src/kdc/ndr.c
References:
https://nvd.nist.gov/vuln/detail/CVE-2024-26458
https://nvd.nist.gov/vuln/detail/CVE-2024-26461
https://nvd.nist.gov/vuln/detail/CVE-2024-26462
Thanks,
Alex~
--
Alexander Bergmann <abergmann at suse.com>
Security Engineer, GPG: E30A 65A4 0F50 0066 B2B5 F614 DE54 E875 9FFA 4886
SUSE Software Solutions Germany GmbH
Frankenstr. 146, 90461 Nuernberg, Germany
Managing Director/Geschäftsführer: Ivo Totev, Andrew McDonald, Werner Knoblich
(HRB 36809, AG Nürnberg)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://mailman.mit.edu/pipermail/kerberos/attachments/20240301/04090a6c/attachment.sig>
More information about the Kerberos
mailing list