VUL-0: CVE-2024-26458: krb5: memory leak at /krb5/src/lib/rpc/pmap_rmt.c VUL-0: CVE-2024-26461: krb5: memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c VUL-0: CVE-2024-26462: krb5: memory leak at /krb5/src/kdc/ndr.c VUL-0: CVE-2024-37370: krb5: confidential GSS krb5 wrap tokens with invalid plaintext Extra Count fields are errouneously accepted during unwrap VUL-0: CVE-2024-37371: krb5: invalid memory read when processing message tokens with invalid length fields scabrero important security

Security update for krb5

This update for krb5 fixes the following issues: - CVE-2024-37370: Confidential GSS krb5 wrap tokens with invalid plaintext Extra Count fields were erroneously accepted during unwrap (bsc#1227186) - CVE-2024-37371: Fixed invalid memory read when processing message tokens with invalid length fields (bsc#1227187) - CVE-2024-26458: Fixed memory leak at /krb5/src/lib/rpc/pmap_rmt.c (bsc#1220770) - CVE-2024-26461: Fixed memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c (bsc#1220771) - CVE-2024-26462: Fixed memory leak at /krb5/src/kdc/ndr.c (bsc#1220772) krb5 krb5:krb5-mini