krb5: fix CVE-2025-24528 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Divya Chellam <divya.chellam@windriver.com>	2025-09-23 14:57:00 +0530
committer	Gyorgy Sarvari <skandigraun@gmail.com>	2025-09-26 13:17:09 +0200
commit	4cf505e5e56caecb1a3f7014cb33f23a714cf366 (patch)
tree	0002f4eb657e63d857d2650418692b1fe62505f2 /meta-python/recipes-devtools/python
parent	24d495df725cb45dfa956afce53953c15c4f5790 (diff)
download	meta-openembedded-4cf505e5e56caecb1a3f7014cb33f23a714cf366.tar.gz

krb5: fix CVE-2025-24528

In MIT krb5 release 1.7 and later with incremental propagation enabled, an authenticated attacker can cause kadmind to write beyond the end of the mapped region for the iprop log file, likely causing a process crash. https://github.com/krb5/krb5/commit/78ceba024b64d49612375be4a12d1c066b0bfbd0 Reference: https://security-tracker.debian.org/tracker/CVE-2025-24528 Upstream-patch: https://github.com/krb5/krb5/commit/78ceba024b64d49612375be4a12d1c066b0bfbd0 Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: