[ubuntu/jammy-security] krb5 1.19.2-2ubuntu0.6 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Mar 3 13:12:00 UTC 2025
krb5 (1.19.2-2ubuntu0.6) jammy-security; urgency=medium
* SECURITY UPDATE: denial of service via two memory leaks
- debian/patches/CVE-2024-26458.patch: fix two unlikely memory leaks in
src/lib/gssapi/krb5/k5sealv3.c, src/lib/rpc/pmap_rmt.c.
- CVE-2024-26458
- CVE-2024-26461
* SECURITY UPDATE: kadmind DoS via iprop log file
- debian/patches/CVE-2025-24528.patch: prevent overflow when
calculating ulog block size in src/lib/kdb/kdb_log.c.
- CVE-2025-24528
Date: 2025-02-25 20:09:10.687299+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/krb5/1.19.2-2ubuntu0.6
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list