krb5-appl-clients-1.0.3-6.1 on GA media (moderate)

krb5-appl-clients-1.0.3-6.1 on GA media Announcement ID: openSUSE-SU-2026:10657-1 Rating: moderate Cross-References: CVE-2026-32746 CVSS scores: CVE-2026-32746 SUSE : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability ca...

OPENSUSE-SU-2026:20374-1 Security update for krb5-appl

This update for krb5-appl fixes the following issues: Changes in krb5-appl: - CVE-2026-32746: Remote Pre-Auth Buffer Overflow in GNU Inetutils telnetd LINEMODE bsc1259691...

Linux Distros Unpatched Vulnerability : CVE-2022-39028

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. In a typical...

OESA-2024-1359 telnet security update

Telnet is an application protocol used on the Internet or local area network to provide a bidirectional interactive text-oriented communication facility using a virtual terminal connection. The package includes a remote login client program for telnet and a server daemon. Security Fixes: telnetd ...

EulerOS Virtualization 2.11.0 : krb5 (EulerOS-SA-2023-2096)

According to the versions of the krb5 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code...

QNAP QTS Buffer Overflow Vulnerability in Samba (QSA-23-03)

The version of QNAP QTS installed on the remote host is affected by a buffer overflow vulnerability as referenced in the QSA-23-03 advisory. PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution in KDC, kadmind, ...

SUSE CVE-2019-25018

In the rcp client in MIT krb5-appl through 1.0.3, malicious servers could bypass intended access restrictions via the filename of . or an empty filename, similar to CVE-2018-20685 and CVE-2019-7282. The impact is modifying the permissions of the target directory on the client side. NOTE: MIT...

SUSE CVE-2022-39028

telnetd in GNU Inetutils through 2.3, MIT krb5-appl through 1.0.3, and derivative works has a NULL pointer dereference via 0xff 0xf7 or 0xff 0xf8. In a typical installation, the telnetd application would crash but the telnet service would remain available through inetd. However, if the telnetd...

EulerOS 2.0 SP8 : krb5 (EulerOS-SA-2023-1321)

According to the versions of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution in KDC,...