Search for packages
| purl | pkg:alpm/archlinux/krb5@1.21.2-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-m67b-g9qg-aaam
Aliases: CVE-2024-37370 |
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application. |
Affected by 0 other vulnerabilities. |
|
VCID-wahm-6uhz-aaaj
Aliases: CVE-2024-37371 |
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:20.273938+00:00 | Arch Linux Importer | Affected by | VCID-m67b-g9qg-aaam | https://security.archlinux.org/AVG-2856 | 36.0.0 |
| 2025-03-28T07:46:20.254213+00:00 | Arch Linux Importer | Affected by | VCID-wahm-6uhz-aaaj | https://security.archlinux.org/AVG-2856 | 36.0.0 |
| 2024-09-18T02:01:33.942273+00:00 | Arch Linux Importer | Affected by | VCID-m67b-g9qg-aaam | https://security.archlinux.org/AVG-2856 | 34.0.1 |
| 2024-09-18T02:01:33.915942+00:00 | Arch Linux Importer | Affected by | VCID-wahm-6uhz-aaaj | https://security.archlinux.org/AVG-2856 | 34.0.1 |
| 2024-07-06T22:27:37.446741+00:00 | Arch Linux Importer | Affected by | VCID-m67b-g9qg-aaam | https://security.archlinux.org/AVG-2856 | 34.0.0rc4 |
| 2024-07-06T22:27:37.422136+00:00 | Arch Linux Importer | Affected by | VCID-wahm-6uhz-aaaj | https://security.archlinux.org/AVG-2856 | 34.0.0rc4 |