First published: Mon Feb 26 2024(Updated: )
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Storage Defender - Resiliency Service | <=2.0.0 - 2.0.9 | |
MIT Kerberos 5 | =1.21.2 | |
NetApp Active IQ Unified Manager for VMware vSphere | ||
netapp cloud volumes ontap mediator | ||
NetApp Management Services for NetApp HCI | ||
NetApp ONTAP Select Deploy | ||
All of | ||
netapp h610c firmware | ||
netapp h610c | ||
All of | ||
netapp h610s firmware | ||
netapp h610s | ||
All of | ||
netapp h615c firmware | ||
netapp h615c |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-26462 is classified as a high-severity memory leak vulnerability in Kerberos 5 version 1.21.2.
To address CVE-2024-26462, upgrade Kerberos 5 to a version that is not affected by this vulnerability.
The memory leak in CVE-2024-26462 can lead to increased memory consumption and potentially affect the performance of affected systems.
CVE-2024-26462 affects Kerberos 5 version 1.21.2 and specific versions of IBM Storage Defender - Resiliency Service up to 2.0.9.
Currently, the best workaround for CVE-2024-26462 is to ensure that any impacted systems are monitored for increased memory usage until a patch can be applied.