VYPR

rpm package

opensuse/gsasl&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/gsasl&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2026-48829HigMay 24, 2026
    affected < 2.2.3-1.1fixed 2.2.3-1.1

    In GNU SASL before 2.2.3, DIGEST-MD5 has a NULL pointer dereference affecting both clients and servers, via a known token with no accompanying = character. This occurs in lib/digest-md5/getsubopt.c.