Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2024-26461
HistoryFeb 29, 2024 - 12:00 a.m.

CVE-2024-26461

2024-02-2900:00:00
ubuntu.com
ubuntu.com
9
cve-2024-26461
kerberos 5
memory leak vulnerability
k5sealv3.c
mdeslaur
unix

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in
/krb5/src/lib/gssapi/krb5/k5sealv3.c.

Notes

Author Note
Priority reason: memory leak only unlikely to be triggered
mdeslaur per upstream: “The k5sealv3.c leak affects an encoding function, and happens on a bounds check which likely cannot be triggered with any choice of memory-valid API inputs. (The bounds check was itself introduced to quash a different static analysis defect.)”

Related

cvelist 1
debiancve 1
nvd 1
redhatcve 1
prion 1
cve 1
nessus 12
osv 2
almalinux 1
mageia 1
oraclelinux 1
openvas 5
amazon 1
rocky 1
redhat 5
redos 1
photon 3
cvelist
cvelist
CVE-2024-26461
2024-02-26 00:00:00
debiancve
debiancve
CVE-2024-26461
2024-02-29 01:44:18
nvd
nvd
CVE-2024-26461
2024-02-29 01:44:18
redhatcve
redhatcve
CVE-2024-26461
2024-02-28 21:39:40
prion
prion
Memory corruption
2024-02-29 01:44:00
cve
cve
CVE-2024-26461
2024-02-29 01:44:18
nessus
nessus
RHEL 8 : krb5 (RHSA-2024:3268)
2024-05-23 00:00:00
SUSE SLES15 Security Update : krb5 (SUSE-SU-2024:1006-1)
2024-03-28 00:00:00
SUSE SLES15 Security Update : krb5 (SUSE-SU-2024:0999-1)
2024-03-28 00:00:00
osv
osv
Low: krb5 security update
2024-05-22 00:00:00
Low: krb5 security update
2024-06-14 13:59:16
almalinux
almalinux
Low: krb5 security update
2024-05-22 00:00:00
mageia
mageia
Updated krb5 packages fix security vulnerabilities
2024-05-01 01:25:14
oraclelinux
oraclelinux
krb5 security update
2024-05-29 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0158)
2024-05-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0999-1)
2024-05-07 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1001-1)
2024-05-07 00:00:00
amazon
amazon
Medium: krb5
2024-04-11 01:07:00
rocky
rocky
krb5 security update
2024-06-14 13:59:16
redhat
redhat
(RHSA-2024:3268) Low: krb5 security update
2024-05-22 10:41:25
(RHSA-2024:3368) Important: Errata Advisory for Red Hat OpenShift GitOps v1.12.3 security update
2024-05-28 08:19:54
(RHSA-2024:3475) Important: Errata Advisory for Red Hat OpenShift GitOps v1.11.5 security update
2024-05-29 17:42:30
redos
redos
ROS-20240423-03
2024-04-23 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2024-3.0-0764
2024-06-05 00:00:00
Moderate Photon OS Security Update - PHSA-2024-4.0-0624
2024-06-05 00:00:00
Moderate Photon OS Security Update - PHSA-2024-5.0-0284
2024-06-05 00:00:00

6.2 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for UB:CVE-2024-26461
cvelist1debiancve1nvd1redhatcve1prion1cve1nessus12osv2almalinux1mageia1oraclelinux1openvas5amazon1rocky1redhat5redos1photon3