[ubuntu/oracular-security] krb5 1.21.3-3ubuntu0.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Mar 3 13:11:57 UTC 2025
krb5 (1.21.3-3ubuntu0.2) oracular-security; urgency=medium
* SECURITY UPDATE: denial of service via two memory leaks
- debian/patches/CVE-2024-26458.patch: fix two unlikely memory leaks in
src/lib/gssapi/krb5/k5sealv3.c, src/lib/rpc/pmap_rmt.c.
- CVE-2024-26458
- CVE-2024-26461
* SECURITY UPDATE: kadmind DoS via iprop log file
- debian/patches/CVE-2025-24528.patch: prevent overflow when
calculating ulog block size in src/lib/kdb/kdb_log.c.
- CVE-2025-24528
Date: 2025-02-25 20:09:28.391178+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/krb5/1.21.3-3ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the oracular-changes
mailing list