VulnerableCode Package Details - pkg:alpm/archlinux/krb5@1.15.2-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/krb5@1.15.2-1

Essentials
History (3)

purl	pkg:alpm/archlinux/krb5@1.15.2-1

Next non-vulnerable version	1.16.1-1
Latest non-vulnerable version	1.21.3-1
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-r1wa-3gtw-1qey Aliases: CVE-2017-15088	krb5: Buffer overflow in get_matching_data()	There are no reported fixed by versions.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-9hyk-mdvc-1baq	krb5: Invalid S4U2Self or S4U2Proxy request causes assertion failure	CVE-2017-11368
VCID-qcva-cb6c-wyds	krb5: Automatic sec context deletion could lead to double-free	CVE-2017-11462

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:26:12.604674+00:00	Arch Linux Importer	Fixing	VCID-9hyk-mdvc-1baq	https://security.archlinux.org/AVG-414	38.0.0
2026-04-01T18:26:12.579739+00:00	Arch Linux Importer	Fixing	VCID-qcva-cb6c-wyds	https://security.archlinux.org/AVG-414	38.0.0
2026-04-01T18:24:40.302296+00:00	Arch Linux Importer	Affected by	VCID-r1wa-3gtw-1qey	https://security.archlinux.org/AVG-505	38.0.0