Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2024:3268

Опубликовано: 14 июн. 2024
Источник: rocky
Оценка: Low

Описание

Low: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).

Security Fix(es):

  • krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c (CVE-2024-26458)

  • krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c (CVE-2024-26461)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
krb5-develx86_6427.el8_10krb5-devel-1.18.2-27.el8_10.x86_64.rpm
krb5-libsx86_6427.el8_10krb5-libs-1.18.2-27.el8_10.x86_64.rpm
krb5-pkinitx86_6427.el8_10krb5-pkinit-1.18.2-27.el8_10.x86_64.rpm
krb5-serverx86_6427.el8_10krb5-server-1.18.2-27.el8_10.x86_64.rpm
krb5-server-ldapx86_6427.el8_10krb5-server-ldap-1.18.2-27.el8_10.x86_64.rpm
krb5-workstationx86_6427.el8_10krb5-workstation-1.18.2-27.el8_10.x86_64.rpm
libkadm5x86_6427.el8_10libkadm5-1.18.2-27.el8_10.x86_64.rpm

Показывать по

Связанные CVE

CVE-2024-26458
CVE-2024-26461

Ссылки на источники

Исправления

Связанные уязвимости

suse-cvrf логотип

SUSE-SU-2024:1148-1

suse-cvrf
около 1 года назад

Security update for krb5

suse-cvrf логотип

SUSE-SU-2024:1006-1

suse-cvrf
около 1 года назад

Security update for krb5

suse-cvrf логотип

SUSE-SU-2024:1001-1

suse-cvrf
около 1 года назад

Security update for krb5

suse-cvrf логотип

SUSE-SU-2024:0999-1

suse-cvrf
больше 1 года назад

Security update for krb5

oracle-oval логотип

ELSA-2024-3268

oracle-oval
около 1 года назад

ELSA-2024-3268: krb5 security update (LOW)