Описание
ELSA-2025-1352: krb5 security update (MODERATE)
[1.15.1-55.0.9]
- Fixes CVE-2025-24528 , Prevent overflow when calculating ulog block size [Orabug: 37587301]
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
krb5-devel
1.15.1-55.0.9.el7_9
krb5-libs
1.15.1-55.0.9.el7_9
krb5-pkinit
1.15.1-55.0.9.el7_9
krb5-server
1.15.1-55.0.9.el7_9
krb5-server-ldap
1.15.1-55.0.9.el7_9
krb5-workstation
1.15.1-55.0.9.el7_9
libkadm5
1.15.1-55.0.9.el7_9
Связанные CVE
Связанные уязвимости
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation ...