{"id":"CLSA-2026-1779461988","summary":"krb5: Fix of 3 CVEs","details":"- CVE-2024-3596: generate and verify Message-Authenticator MACs in libkrad to\n  mitigate the BlastRADIUS attack on the RADIUS protocol; includes follow-up\n  fix for uninitialized pointer dereference in krad_packet_decode_request\n- CVE-2024-37370: prevent modification of Extra Count field in GSS krb5 wrap\n  token to avoid appearing truncated to application\n- CVE-2024-37371: fix invalid memory reads during GSS message token handling","modified":"2026-06-01T00:33:14.937703371Z","published":"2026-05-22T14:59:52Z","upstream":["CVE-2024-3596","CVE-2024-37370","CVE-2024-37371"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/centos-stream8els/CLSA-2026-1779461988.html"}],"affected":[{"package":{"name":"krb5-devel","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/krb5-devel?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}},{"package":{"name":"krb5-libs","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/krb5-libs?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}},{"package":{"name":"krb5-pkinit","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/krb5-pkinit?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}},{"package":{"name":"krb5-server","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/krb5-server?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}},{"package":{"name":"krb5-server-ldap","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/krb5-server-ldap?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}},{"package":{"name":"krb5-workstation","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/krb5-workstation?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}},{"package":{"name":"libkadm5","ecosystem":"TuxCare:CentOS-Stream:8","purl":"pkg:rpm/tuxcare/libkadm5?distro=centos-stream-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.18.2-27.el8.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2026-1779461988.json"}}],"schema_version":"1.7.5"}