Fedora 44 : libgsasl (2026-5868a8d652)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-5868a8d652 advisory. GSSAPI server: Boundary check gsswrap token read OOB Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

[SECURITY] Fedora 44 Update: libgsasl-1.10.0-15.fc44

The library includes support for the SASL framework and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, and NTLM mechanisms...

Fedora: Security Advisory (FEDORA-2026-5317df36be)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2026-a8d6c7c064)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 43 : libgsasl (2026-5317df36be)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-5317df36be advisory. GSSAPI server: Boundary check gsswrap token read OOB Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

Fedora 42 : libgsasl (2026-a8d6c7c064)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-a8d6c7c064 advisory. GSSAPI server: Boundary check gsswrap token read OOB Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

[SECURITY] Fedora 43 Update: libgsasl-1.10.0-15.fc43

The library includes support for the SASL framework and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, and NTLM mechanisms...

Linux Distros Unpatched Vulnerability : CVE-2022-2469

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client CVE-2022-2469 Note that Nessus relies on the presence of the packag...

OPENSUSE-SU-2024:12325-1 libgsasl-devel-1.10.0-3.1 on GA media

These are all security issues fixed in the libgsasl-devel-1.10.0-3.1 package on the GA media of openSUSE Tumbleweed...

OESA-2024-1444 libgsasl security update

The library includes support for the SASL framework and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, and NTLM mechanisms. Security Fixes: GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API...

OESA-2024-1351 libgsasl security update

The library includes support for the SASL framework and at least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, and NTLM mechanisms. Security Fixes: GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API...

SUSE CVE-2022-2469

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client...

SUSE-SU-2022:3563-1 Security update for libgsasl

This update for libgsasl fixes the following issues: - CVE-2022-2469: Fixed OOB read in GSSAPI server bsc1201715...

SUSE-SU-2022:3562-1 Security update for libgsasl

This update for libgsasl fixes the following issues: - CVE-2022-2469: Fixed OOB read in GSSAPI server bsc1201715...

SUSE-SU-2022:3561-1 Security update for libgsasl

This update for libgsasl fixes the following issues: - CVE-2022-2469: Fixed OOB read in GSSAPI server bsc1201715...

Mageia: Security Advisory (MGASA-2022-0298)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated libgsasl packages fix security vulnerability

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client. CVE-2022-2469...

MGASA-2022-0298 Updated libgsasl packages fix security vulnerability

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client. CVE-2022-2469...

CVE-2022-2469

GNU SASL libgsasl server-side read-out-of-bounds with malicious authenticated GSS-API client...

Out-Of-Bound Read

libgsasl is vulnerable to server-side read-out-of-bounds. The vulnerability is with malicious authenticated GSS-API client which allows an attacker to cause out-of-bound reads...