Lucene search
K

12 matches found

OSV
OSV
added 2026/02/23 12:0 a.m.5 views

ALSA-2026:3033 Important: munge security update

MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...

7.8CVSS6.2AI score0.00302EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2026/02/23 12:0 a.m.10 views

munge security update

0.5.15-11 - Fix CVE-2026-25506...

7.7CVSS5.7AI score0.00302EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/23 12:0 a.m.4 views

RHEL 9 : munge (RHSA-2026:3034)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:3034 advisory. MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use i...

7.8CVSS6.3AI score0.00302EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/02/18 1:5 p.m.6 views

Important: Red Hat Security Advisory: munge security update

An update for munge is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.4AI score0.00302EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/02/12 6:22 p.m.7 views

Security update for munge

This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed f...

7.7CVSS5.8AI score0.00302EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.7 views

SUSE SLES12 Security Update : munge (SUSE-SU-2026:0448-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0448-1 advisory. - CVE-2026-25506: buffer overflow in message unpacking bsc1257651. - Make logrotate work on log as user munge to prevent local privilege...

7.8CVSS6.3AI score0.00302EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2026/02/12 12:0 a.m.3 views

libmunge2-0.5.18-1.1 on GA media (moderate)

libmunge2-0.5.18-1.1 on GA media Announcement ID: openSUSE-SU-2026:10178-1 Rating: moderate Cross-References: CVE-2026-25506 CVSS scores: CVE-2026-25506 SUSE : 7.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

7.7CVSS5.5AI score0.00302EPSS
Exploits0
OSV
OSV
added 2026/02/11 4:15 p.m.1 views

SUSE-SU-2026:0451-1 Security update for munge

This update for munge fixes the following issues: - CVE-2026-25506: buffer overflow in message unpacking bsc1257651...

7.8CVSS5.8AI score0.00302EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/02/11 4:15 p.m.2 views

Security update for munge

This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed f...

7.7CVSS5.8AI score0.00302EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/02/11 2:17 p.m.3 views

CVE-2026-25506

A buffer overflow vulnerability was discovered in the MUNGE authentication daemon munged. In affected versions, a local attacker can potentially leak secret cryptographic key material from the daemon's memory by sending a specially crafted message with an oversized address field. With the leaked...

7.8CVSS5.8AI score0.00302EPSS
Exploits0References6
OSV
OSV
added 2026/02/10 7:16 p.m.3 views

DEBIAN-CVE-2026-25506

MUNGE is an authentication service for creating and validating user credentials. From 0.5 to 0.5.17, local attacker can exploit a buffer overflow vulnerability in munged the MUNGE authentication daemon to leak cryptographic key material from process memory. With the leaked key material, the...

7.8CVSS6.3AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2026/02/10 6:55 p.m.82 views

CVE-2026-25506

CVE-2026-25506 affects MUNGE: from version 0.5 up to 0.5.17, a local attacker can trigger a buffer overflow in munged to leak cryptographic key material from process memory, enabling forging of arbitrary MUNGE credentials and impersonation of users (including root) on services relying on MUNGE fo...

7.8CVSS6.2AI score0.00302EPSS
Exploits0References22Affected Software1
Rows per page
Query Builder