4 matches found
CLSA-2026-1777591889 Fix CVE(s): CVE-2026-35414
SECURITY UPDATE: incorrect matching of authorizedkeys principals="..." option when a certificate principal name contains a comma character - debian/patches/CVE-2026-35414.patch: split principallist on commas and exact-match each entry instead of passing it to matchlist - CVE-2026-35414...
CLSA-2026-1777453408 Fix CVE(s): CVE-2026-35414
SECURITY UPDATE: incorrect matching of principals in the authorizedkeys principals="..." option when a certificate principal contains a comma. - debian/patches/CVE-2026-35414.patch: fix matchprincipalsoption to split on comma and compare principals exactly - CVE-2026-35414...
CLSA-2026-1777393442 openssh: Fix of CVE-2026-35414
CVE-2026-35414: fix incorrect matching of principals in the authorizedkeys principals="..." option when a certificate principal contains a comma character...
SUSE CVE-2018-16841
Samba from version 4.3.0 and before versions 4.7.12, 4.8.7 and 4.9.3 are vulnerable to a denial of service. When configured to accept smart-card authentication, Samba's KDC will call tallocfree twice on the same memory if the principal in a validly signed certificate does not match the principal ...