Lucene search
GoogleOSV:SUSE-SU-2024:2307-1HistoryJul 05, 2024 - 10:04 a.m.
Security update for krb5
2024-07-0510:04:35
Google
osv.dev
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
AI Score
7.2
Confidence
Low
This update for krb5 fixes the following issues:
- CVE-2024-37370: Fixed confidential GSS krb5 wrap tokens with invalid fields were errouneously accepted (bsc#1227186).
- CVE-2024-37371: Fixed invalid memory read when processing message tokens with invalid length fields (bsc#1227187).
Related
nessus
nessus
RHEL 8 : krb5 (RHSA-2024:4734)
2024-07-23 00:00:00
EulerOS 2.0 SP10 : krb5 (EulerOS-SA-2024-2419)
2024-09-12 00:00:00
RHEL 9 : krb5 (RHSA-2024:5643)
2024-08-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-5726-1)
2024-07-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2305-1)
2024-07-08 00:00:00
Mageia: Security Advisory (MGASA-2024-0253)
2024-07-04 00:00:00
redhat
redhat
(RHSA-2024:5630) Moderate: krb5 security update
2024-08-20 15:36:48
(RHSA-2024:5316) Moderate: krb5 security update
2024-08-13 15:31:25
(RHSA-2024:4743) Moderate: krb5 security update
2024-07-23 14:47:21
almalinux
almalinux
Moderate: krb5 security update
2024-08-13 00:00:00
Moderate: krb5 security update
2024-09-03 00:00:00
osv
osv
Security update for krb5
2024-07-08 12:54:19
Security update for krb5
2024-07-04 22:13:07
Moderate: krb5 security update
2024-09-03 00:00:00
ibm
ibm
ubuntu
ubuntu
Kerberos vulnerabilities
2024-08-08 00:00:00
ubuntucve
ubuntucve
CVE-2024-37371
2024-06-28 00:00:00
CVE-2024-37370
2024-06-28 00:00:00
redos
redos
ROS-20240911-04
2024-09-11 00:00:00
amazon
amazon
Medium: krb5
2024-07-18 02:00:00
mageia
mageia
Updated krb5 packages fix security vulnerabilities
2024-07-03 19:36:28
oraclelinux
oraclelinux
krb5 security update
2024-09-03 00:00:00
krb5 security update
2024-08-13 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2024-4.0-0679
2024-09-02 00:00:00
Critical Photon OS Security Update - PHSA-2024-3.0-0791
2024-09-04 00:00:00
Critical Photon OS Security Update - PHSA-2024-5.0-0355
2024-08-26 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-37371 affecting package krb5 for versions less than 1.21.3-1
2024-08-05 03:22:58
CVE-2024-37370 affecting package krb5 for versions less than 1.21.3-1
2024-08-05 03:22:58
CVE-2024-37370 affecting package krb5 for versions less than 1.21.3-1
2024-08-14 20:43:58
alpinelinux
alpinelinux
CVE-2024-37371
2024-06-28 23:15:11
CVE-2024-37370
2024-06-28 22:15:02
veracode
veracode
Plaintext Modification
2024-07-01 11:00:24
Denial Of Service (DoS)
2024-07-01 11:46:03
cvelist
cvelist
CVE-2024-37370
2024-06-28 00:00:00
CVE-2024-37371
2024-06-28 00:00:00
debiancve
debiancve
CVE-2024-37371
2024-06-28 23:15:11
CVE-2024-37370
2024-06-28 22:15:02
vulnrichment
vulnrichment
CVE-2024-37370
2024-06-28 00:00:00
CVE-2024-37371
2024-06-28 00:00:00
nvd
nvd
CVE-2024-37370
2024-06-28 22:15:02
CVE-2024-37371
2024-06-28 23:15:11
redhatcve
redhatcve
CVE-2024-37370
2024-06-28 05:08:57
CVE-2024-37371
2024-06-28 05:08:51
cve
cve
CVE-2024-37370
2024-06-28 22:15:02
CVE-2024-37371
2024-06-28 23:15:11
fedora
fedora
[SECURITY] Fedora 40 Update: krb5-1.21.3-1.fc40
2024-07-13 02:46:57
[SECURITY] Fedora 39 Update: krb5-1.21.3-1.fc39
2024-07-17 01:19:01
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
AI Score
7.2
Confidence
Low
Related for OSV:SUSE-SU-2024:2307-1