14 matches found
RockyLinux 9 : munge (RLSA-2026:3034)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:3034 advisory. MUNGE: MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery CVE-2026-25506 Tenable has extracted the preceding description...
RLSA-2026:3032 Important: munge security update
MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...
ALSA-2026:3033 Important: munge security update
MUNGE MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having...
MUNGE: MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery
A buffer overflow vulnerability was discovered in the MUNGE authentication daemon munged. In affected versions, a local attacker can potentially leak secret cryptographic key material from the daemon's memory by sending a specially crafted message with an oversized address field. With the leaked...
MUNGE: MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery
A buffer overflow vulnerability was discovered in the MUNGE authentication daemon munged. In affected versions, a local attacker can potentially leak secret cryptographic key material from the daemon's memory by sending a specially crafted message with an oversized address field. With the leaked...
Security update for munge
This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed f...
SUSE-SU-2026:0484-1 Security update for munge
This update for munge fixes the following issues: - CVE-2026-25506: buffer overflow in message unpacking bsc1257651...
SUSE SLES15 Security Update : munge (SUSE-SU-2026:0450-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0450-1 advisory. - CVE-2026-25506: buffer overflow in message unpacking bsc1257651. - Make logrotate work on munge log as user munge. This prevents a local privilege...
SUSE-SU-2026:0451-1 Security update for munge
This update for munge fixes the following issues: - CVE-2026-25506: buffer overflow in message unpacking bsc1257651...
Security update for munge
This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Make logrotate work on munge log as user munge. This prevents a local privilege escalation bsc1246088. Patch Instructions: To install this SUSE update use the SUSE recommended...
SUSE-SU-2026:0450-1 Security update for munge
This update for munge fixes the following issues: - CVE-2026-25506: buffer overflow in message unpacking bsc1257651. - Make logrotate work on munge log as user munge. This prevents a local privilege escalation bsc1246088...
SUSE-SU-2026:0448-1 Security update for munge
This update for munge fixes the following issues: - CVE-2026-25506: buffer overflow in message unpacking bsc1257651. - Make logrotate work on log as user munge to prevent local privilege escalation bsc1246088...
Security update for munge
This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Make logrotate work on log as user munge to prevent local privilege escalation bsc1246088. Patch Instructions: To install this SUSE update use the SUSE recommended installation metho...
CVE-2026-25506 MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery
MUNGE is an authentication service for creating and validating user credentials. From 0.5 to 0.5.17, local attacker can exploit a buffer overflow vulnerability in munged the MUNGE authentication daemon to leak cryptographic key material from process memory. With the leaked key material, the...