VYPR

rpm package

opensuse/krb5&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/krb5&distro=openSUSE%20Tumbleweed

Vulnerabilities (87)

  • CVE-2026-40356MedApr 28, 2026
    affected < 1.22.2-3.1fixed 1.22.2-3.1

    In MIT Kerberos 5 (aka krb5) before 1.22.3, there is an integer underflow and resultant out-of-bounds read if an application calls gss_accept_sec_context() on a system with a NegoEx mechanism registered in /etc/gss/mech. An unauthenticated remote attacker can trigger this, possib

  • CVE-2026-40355MedApr 28, 2026
    affected < 1.22.2-3.1fixed 1.22.2-3.1

    In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL pointer dereference if an application calls gss_accept_sec_context() on a system with a NegoEx mechanism registered in /etc/gss/mech. An unauthenticated remote attacker can trigger this, causing the process to terminate

  • CVE-2025-24528HigJan 16, 2026
    affected < 1.21.3-2.1fixed 1.21.3-2.1

    In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.

  • CVE-2024-37371CriJun 28, 2024
    affected < 1.21.3-1.1fixed 1.21.3-1.1

    In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.

  • CVE-2024-37370HigJun 28, 2024
    affected < 1.21.3-1.1fixed 1.21.3-1.1

    In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.

  • CVE-2024-26462MedFeb 29, 2024
    affected < 1.21.2-3.1fixed 1.21.2-3.1

    Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.

  • CVE-2024-26461HigFeb 29, 2024
    affected < 1.21.2-3.1fixed 1.21.2-3.1

    Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

  • CVE-2024-26458MedFeb 29, 2024
    affected < 1.21.2-3.1fixed 1.21.2-3.1

    Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

  • CVE-2023-39975HigAug 16, 2023
    affected < 1.21.2-1.1fixed 1.21.2-1.1

    kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is reachable if an authenticated user can trigger an authorization-data handling failure. Incorrect data is copied from one ticket to another.

  • CVE-2023-36054MedAug 7, 2023
    affected < 1.21.1-1.1fixed 1.21.1-1.1

    lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate the relationship between n_key_

  • CVE-2022-42898HigDec 25, 2022
    affected < 1.20.1-1.1fixed 1.20.1-1.1

    PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cau

  • CVE-2021-37750MedAug 23, 2021
    affected < 1.19.2-2.2fixed 1.19.2-2.2

    The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field.

  • CVE-2021-36222HigJul 22, 2021
    affected < 1.19.2-2.2fixed 1.19.2-2.2

    ec_verify in kdc/kdc_preauth_ec.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a

  • CVE-2020-28196HigNov 6, 2020
    affected < 1.19.2-3.1fixed 1.19.2-3.1

    MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.

  • CVE-2018-20217MedDec 26, 2018
    affected < 1.19.2-3.1fixed 1.19.2-3.1

    A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt ticket using an older encryption type (single-DES, triple-DES, or RC4), the attacker can crash the KDC by making an S4U2Self request.

  • CVE-2018-5729MedMar 6, 2018
    affected < 1.19.2-2.2fixed 1.19.2-2.2

    MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal to the database module.

  • CVE-2017-11462CriSep 13, 2017
    affected < 1.19.2-2.2fixed 1.19.2-2.2

    Double free vulnerability in MIT Kerberos 5 (aka krb5) allows attackers to have unspecified impact via vectors involving automatic deletion of security contexts on error.

  • CVE-2017-11368MedAug 9, 2017
    affected < 1.19.2-2.2fixed 1.19.2-2.2

    In MIT Kerberos 5 (aka krb5) 1.7 and later, an authenticated attacker can cause a KDC assertion failure by sending invalid S4U2Self or S4U2Proxy requests.

  • CVE-2016-3120MedAug 1, 2016
    affected < 1.15-1.1fixed 1.15-1.1

    The validate_as_request function in kdc_util.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.13.6 and 1.4.x before 1.14.3, when restrict_anonymous_to_tgt is enabled, uses an incorrect client data structure, which allows remote authenticated users to c

  • CVE-2016-3119MedMar 26, 2016
    affected < 1.15-1.1fixed 1.15-1.1

    The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through 1.13.4 and 1.14.x through 1.14.1 mishandles the DB argument, which allows remote authenticated users to cause a denial of service

Page 1 of 5