REDHAT-BUG-2342796
First published: Wed Jan 29 2025(Updated: )
In MIT krb5 release 1.7 and later with incremental propagation enabled, an authenticated attacker can cause kadmind to write beyond the end of the mapped region for the iprop log file, likely causing a process crash.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MIT Kerberos 5 | >=1.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of REDHAT-BUG-2342796?
The severity of REDHAT-BUG-2342796 is high due to the potential for an authenticated attacker to cause a process crash.
How do I fix REDHAT-BUG-2342796?
To fix REDHAT-BUG-2342796, update your MIT krb5 installation to a version later than 1.7 that addresses this vulnerability.
What versions of MIT krb5 are affected by REDHAT-BUG-2342796?
All versions of MIT krb5 from 1.7 and later with incremental propagation enabled are affected by REDHAT-BUG-2342796.
What could be the potential impact of REDHAT-BUG-2342796?
The potential impact of REDHAT-BUG-2342796 includes crashing the kadmind process, leading to denial of service.
Who can exploit the vulnerability identified as REDHAT-BUG-2342796?
The vulnerability identified as REDHAT-BUG-2342796 can be exploited by authenticated attackers.
- agent/severity
- agent/last-modified-date
- agent/references
- agent/source
- agent/type
- agent/first-publish-date
- agent/description
- agent/event
- agent/guess-ai
- agent/software-canonical-lookup
- agent/tags
- agent/softwarecombine
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2025-24528
- vendor/mit
- canonical/mit kerberos 5