Medium: krb5

Issue Overview: krb5: overflow when calculating ulog block size CVE-2025-24528 A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an...

SUSE-SU-2025:0351-1 Security update for krb5

This update for krb5 fixes the following issues: - CVE-2025-24528: Fixed out-of-bounds write caused by overflow when calculating ulog block size can lead to process crash bsc1236619...

Medium: krb5

Issue Overview: krb5: GSS message token handling CVE-2024-37370 In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. CVE-2024-37371 Affected Packages: krb5 Issue Correction: Run...

SUSE-SU-2022:4167-1 Security update for krb5

This update for krb5 fixes the following issues: - CVE-2022-42898: Fixed integer overflow in PAC parsing bsc1205126...

OPENSUSE-SU-2019:0063-1 Security update for krb5

This update for krb5 fixes the following issues: Security issue fixed: - CVE-2018-20217: Fixed an assertion issue with older encryption types bsc1120489 This update was imported from the SUSE:SLE-15:Update update project...

Medium: krb5

Issue Overview: A flaw was found in the OTP kdcpreauth module of MIT Kerberos. A remote attacker could use this flaw to bypass the requirespreauth flag on a client principal and obtain a ciphertext encrypted in the principal's long-term key. This ciphertext could be used to conduct an off-line...

SUSE-SU-2015:1898-1 Security update for krb5

krb5 was updated to fix one security issue. This security issue was fixed: - CVE-2015-2695: Applications which call gssinquirecontext on a partially-established SPNEGO context could have caused the GSS-API library to read from a pointer using the wrong type, generally causing a process crash...

Medium: krb5

Issue Overview: It was found that kadmind's kpasswd service did not perform any validation on incoming network packets, causing it to reply to all requests. A remote attacker could use this flaw to send spoofed packets to a kpasswd service that appear to come from kadmind on a different server,...

Solaris Update for krb5 krb5kdc 116045-02

Check for the Version of krb5 krb5kdc OpenVAS Vulnerability Test Solaris Update for krb5 krb5kdc 116045-02 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

Fedora Update for krb5 FEDORA-2007-034

Check for the Version of krb5 OpenVAS Vulnerability Test Fedora Update for krb5 FEDORA-2007-034 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...