Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-37371HistoryJun 28, 2024 - 11:15 p.m.
CVE-2024-37371
2024-06-2823:15:11
Debian Security Bug Tracker
security-tracker.debian.org
8
mit kerberos 5
gss message token
invalid length
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | krb5 | <= 1.20.1-2+deb12u1 | krb5_1.20.1-2+deb12u1_all.deb |
| Debian | 11 | all | krb5 | <= 1.18.3-6+deb11u4 | krb5_1.18.3-6+deb11u4_all.deb |
| Debian | 999 | all | krb5 | < 1.21.3-1 | krb5_1.21.3-1_all.deb |
| Debian | 13 | all | krb5 | <= 1.21.2-1 | krb5_1.21.2-1_all.deb |
Related
redhatcve
redhatcve
CVE-2024-37371
2024-06-28 05:08:51
nvd
nvd
CVE-2024-37371
2024-06-28 23:15:11
cvelist
cvelist
CVE-2024-37371
2024-06-28 00:00:00
cve
cve
CVE-2024-37371
2024-06-28 23:15:11