RockyLinux 10 : krb5 (RLSA-2026:19145)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19145 advisory. krb5: MIT Kerberos 5 krb5: Denial of Service via integer underflow and out-of-bounds read CVE-2026-40356 krb5: MIT Kerberos 5: Denial of Service via NU...

ROOT-OS-DEBIAN-12-CVE-2026-40355 CVE-2026-40355 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40355 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2024-26461 CVE-2024-26461 in rootio-krb5 - Patched by Root

Root has patched CVE-2024-26461 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2018-5709 CVE-2018-5709 in rootio-krb5 - Patched by Root

Root has patched CVE-2018-5709 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2024-26458 CVE-2024-26458 in rootio-krb5 - Patched by Root

Root has patched CVE-2024-26458 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2026-40356 CVE-2026-40356 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40356 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

RHSA-2026:19357 Red Hat Security Advisory: krb5 security update

Bulletin has no description...

ALSA-2026:19145 Important: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

ROOT-OS-DEBIAN-13-CVE-2026-40356 CVE-2026-40356 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40356 in the rootio-krb5 package for Root:Debian:13. Multiple fixed versions available...

ROOT-OS-DEBIAN-13-CVE-2026-40355 CVE-2026-40355 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40355 in the rootio-krb5 package for Root:Debian:13. Multiple fixed versions available...

Oracle Linux 8 : krb5 (ELSA-2026-16799)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-16799 advisory. 1.18.2-34.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-34 - Fix NegoEx parsing vulnerabilities CVE-2026-40355, CVE-2026-40356...

SUSE-SU-2026:21618-1 Security update for krb5

This update for krb5 fixes the following issues - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism bsc1263366. - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read bsc1263367...

SUSE-SU-2026:21629-1 Security update for krb5

This update for krb5 fixes the following issues - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism bsc1263366. - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read bsc1263367...

curl: Fix of 3 CVEs

CVE-2016-8618: fix double-free in curlmaprintf - CVE-2016-8619: fix double-free in krb5 code - CVE-2019-5482: fix heap buffer overflow in TFTP receive...

MGASA-2026-0122 Updated krb5-appl packages fix security vulnerability

telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC Set Local Characters suboption handler because addslc does not check whether the buffer is full. CVE-2026-32746...

Fedora 43 : krb5 (2026-684396998a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-684396998a advisory. - Fix NegoEx parsing vulnerabilities CVE-2026-40355, CVE-2026-40356 - Add upstream patches to build against openssl 4.0 - Make configure.ac work wit...

CentOS 9 : krb5-1.21.1-10.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the krb5-1.21.1-10.el9 build changelog. - In MIT Kerberos 5 aka krb5 before 1.22.3, there is an integer underflow and resultant out-of-bounds read if an application calls...

Astra Linux - уязвимость в krb5

The vulnerability of the decodekrb5flags function in the asn1kencode.c component of the Kerberos authentication protocol is related to integer overflow. Exploiting this vulnerability allows a malicious actor to cause a service denial...

OPENSUSE-SU-2026:10657-1 krb5-appl-clients-1.0.3-6.1 on GA media

These are all security issues fixed in the krb5-appl-clients-1.0.3-6.1 package on the GA media of openSUSE Tumbleweed...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007296)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007296 advisory. In the Linux kernel, the following vulnerability has been resolved: SUNRPC: fix a memleak in gssimportv2context The ctx-mechused.data allocated by kmemdup is not fre...