INFSA-2025:7067: krb5 security update
Information about definition
Identificator: INFSA-2025:7067
Type: security
Release date: 2025-06-10 08:56:41 UTC
Information about package
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).
Vulnerabilities description
- CVE-2025-24528
A flaw was found in krb5. With incremental propagation enabled, an authenticated attacker can cause kadmind to write beyond the end of the mapped region for the iprop log file. This issue can trigger a process crash and lead to a denial of service.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-24528
|
no information | 6.5 | no information |
Updated packages