rpm package
opensuse/crypto-policies&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/crypto-policies&distro=openSUSE%20Leap%2015.6
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-24528 | Hig | 7.1 | < 20230920.570ea89-150600.3.3.1 | 20230920.570ea89-150600.3.3.1 | Jan 16, 2026 | In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash. |
- affected < 20230920.570ea89-150600.3.3.1fixed 20230920.570ea89-150600.3.3.1
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.