krb5 vulnerabilities

Known vulnerabilities in the krb5 package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M CVE-2024-37370	<1.12+dfsg-2ubuntu5.4+esm5
M CVE-2024-37371	<1.12+dfsg-2ubuntu5.4+esm5
L CVE-2024-26458	*
L CVE-2024-26461	*
M CVE-2024-26462	*
M Access of Uninitialized Pointer	<1.12+dfsg-2ubuntu5.4+esm4
M Integer Overflow or Wraparound	<1.12+dfsg-2ubuntu5.4+esm3
M Uncontrolled Recursion	<1.12+dfsg-2ubuntu5.4+esm2
M Reachable Assertion	<1.12+dfsg-2ubuntu5.4+esm1
L LDAP Injection	<1.12+dfsg-2ubuntu5.4
L NULL Pointer Dereference	<1.12+dfsg-2ubuntu5.4
L Integer Overflow or Wraparound	*
L NULL Pointer Dereference	<1.12+dfsg-2ubuntu5.4
L Out-of-Bounds	*
L Double Free	<1.12+dfsg-2ubuntu5.4
M Reachable Assertion	<1.12+dfsg-2ubuntu5.4
M NULL Pointer Dereference	<1.12+dfsg-2ubuntu5.4
M CVE-2016-3119	<1.12+dfsg-2ubuntu5.4
M CVE-2015-8630	<1.12+dfsg-2ubuntu5.4
M Out-of-bounds Read	<1.12+dfsg-2ubuntu5.4
M Missing Release of Resource after Effective Lifetime	<1.12+dfsg-2ubuntu5.4
M Out-of-Bounds	<1.12+dfsg-2ubuntu5.2
M Source Code	<1.12+dfsg-2ubuntu5.2
M Out-of-bounds Read	<1.12+dfsg-2ubuntu5.2
M Release of Invalid Pointer or Reference	<1.12+dfsg-2ubuntu5.2
M Access Restriction Bypass	<1.12+dfsg-2ubuntu5.2
L CVE-2014-5355	<1.12+dfsg-2ubuntu5.2
M CVE-2014-5352	<1.12+dfsg-2ubuntu5.1
M CVE-2014-9421	<1.12+dfsg-2ubuntu5.1
L Information Exposure	<1.12+dfsg-2ubuntu5.1
M Improper Access Control	<1.12+dfsg-2ubuntu5.1
L CVE-2014-5354	<1.12+dfsg-2ubuntu5.1
L NULL Pointer Dereference	<1.12+dfsg-2ubuntu5.1
L Credentials Management	<1.12+dfsg-2ubuntu5.1
M Numeric Errors	<1.12+dfsg-2ubuntu4.2
M NULL Pointer Dereference	<1.12+dfsg-2ubuntu4.2
M Double Free	<1.12+dfsg-2ubuntu4.2
M Out-of-Bounds	<1.12+dfsg-2ubuntu4.2
M Out-of-bounds Read	<1.12+dfsg-2ubuntu4.2

Vulnerability

Vulnerable Version

CVE-2024-37370

<1.12+dfsg-2ubuntu5.4+esm5

CVE-2024-37371

<1.12+dfsg-2ubuntu5.4+esm5

CVE-2024-26458