14 matches found
krb5 security update
An update is available for krb5. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kerberos is a network authentication system, which can improve the security of...
krb5 security update
An update is available for krb5. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kerberos is a network authentication system, which can improve the security of...
Important: Red Hat Security Advisory: krb5 security update
An update for krb5 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
Important: Red Hat Security Advisory: krb5 security update
An update for krb5 is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
RHEL 9 : krb5 (RHSA-2026:19357)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19357 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...
RHEL 10 : krb5 (RHSA-2026:19145)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19145 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sendin...
ROOT-OS-DEBIAN-13-CVE-2026-40355 CVE-2026-40355 in rootio-krb5 - Patched by Root
Root has patched CVE-2026-40355 in the rootio-krb5 package for Root:Debian:13. Multiple fixed versions available...
RLSA-2026:16799 Important: krb5 security update
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...
krb5 security update
An update is available for krb5. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kerberos is a network authentication system, which can improve the security of...
RockyLinux 8 : krb5 (RLSA-2026:16799)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:16799 advisory. krb5: MIT Kerberos 5 krb5: Denial of Service via integer underflow and out-of-bounds read CVE-2026-40356 krb5: MIT Kerberos 5: Denial of Service via NUL...
Fedora 42 : krb5 (2026-6c99aaa6d3)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-6c99aaa6d3 advisory. - Fix NegoEx parsing vulnerabilities CVE-2026-40355, CVE-2026-40356 Tenable has extracted the preceding description block directly from the Fedora...
AlmaLinux 8 : krb5 (ALSA-2026:16799)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:16799 advisory. krb5: MIT Kerberos 5 krb5: Denial of Service via integer underflow and out-of-bounds read CVE-2026-40356 krb5: MIT Kerberos 5: Denial of Service via NULL...
In MIT Kerberos 5 (aka krb5) before 1.22.3, there is a NULL pointer dereference if an application calls gss_accept_sec_context() on a system with a NegoEx mechanism registered in /etc/gss/mech. An unauthenticated remote attacker can trigger this, causing the process to terminate in parse_nego_message.
...
Fedora 45 : krb5 (2026-2e9fe57a46)
The remote Fedora 45 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-2e9fe57a46 advisory. Automatic update for krb5-1.22.2-7.fc45. Changelog Tue Apr 28 2026 Julien Rische - 1.22.2-7 - Fix NegoEx parsing vulnerabilities CVE-2026-40355,...