CVE-2026-40356 affecting package krb5 for versions less than 1.21.3-4

CVE-2026-40356 affecting package krb5 for versions less than 1.21.3-4. A patched version of the package is available...

CVE-2026-40355 affecting package krb5 for versions less than 1.21.3-4

CVE-2026-40355 affecting package krb5 for versions less than 1.21.3-4. A patched version of the package is available...

RockyLinux 10 : krb5 (RLSA-2026:19145)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19145 advisory. krb5: MIT Kerberos 5 krb5: Denial of Service via integer underflow and out-of-bounds read CVE-2026-40356 krb5: MIT Kerberos 5: Denial of Service via NU...

ROOT-OS-DEBIAN-12-CVE-2024-26458 CVE-2024-26458 in rootio-krb5 - Patched by Root

Root has patched CVE-2024-26458 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2018-5709 CVE-2018-5709 in rootio-krb5 - Patched by Root

Root has patched CVE-2018-5709 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2024-26461 CVE-2024-26461 in rootio-krb5 - Patched by Root

Root has patched CVE-2024-26461 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2026-40355 CVE-2026-40355 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40355 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-12-CVE-2026-40356 CVE-2026-40356 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40356 in the rootio-krb5 package for Root:Debian:12. Multiple fixed versions available...

RHSA-2026:19357 Red Hat Security Advisory: krb5 security update

Bulletin has no description...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: crypto: krb5enc – Fix for async decryption skipping hash verification The krb5encdispatchdecrypt function sets req-base.complete as the skcipher callback. This means that when the skcipher completes asynchronously, it signals...

ALSA-2026:19145 Important: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

ROOT-OS-DEBIAN-13-CVE-2026-40356 CVE-2026-40356 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40356 in the rootio-krb5 package for Root:Debian:13. Multiple fixed versions available...

ROOT-OS-DEBIAN-13-CVE-2026-40355 CVE-2026-40355 in rootio-krb5 - Patched by Root

Root has patched CVE-2026-40355 in the rootio-krb5 package for Root:Debian:13. Multiple fixed versions available...

Oracle Linux 8 : krb5 (ELSA-2026-16799)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-16799 advisory. 1.18.2-34.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-34 - Fix NegoEx parsing vulnerabilities CVE-2026-40355, CVE-2026-40356...

SUSE-SU-2026:21618-1 Security update for krb5

This update for krb5 fixes the following issues - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism bsc1263366. - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read bsc1263367...

SUSE-SU-2026:21629-1 Security update for krb5

This update for krb5 fixes the following issues - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism bsc1263366. - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read bsc1263367...

curl: Fix of 3 CVEs

CVE-2016-8618: fix double-free in curlmaprintf - CVE-2016-8619: fix double-free in krb5 code - CVE-2019-5482: fix heap buffer overflow in TFTP receive...

MGASA-2026-0122 Updated krb5-appl packages fix security vulnerability

telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC Set Local Characters suboption handler because addslc does not check whether the buffer is full. CVE-2026-32746...

Fedora 43 : krb5 (2026-684396998a)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-684396998a advisory. - Fix NegoEx parsing vulnerabilities CVE-2026-40355, CVE-2026-40356 - Add upstream patches to build against openssl 4.0 - Make configure.ac work wit...

CentOS 9 : krb5-1.21.1-10.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the krb5-1.21.1-10.el9 build changelog. - In MIT Kerberos 5 aka krb5 before 1.22.3, there is an integer underflow and resultant out-of-bounds read if an application calls...