krb5: fix CVE-2025-24528 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Divya Chellam <divya.chellam@windriver.com>	2025-03-25 10:46:17 +0000
committer	Khem Raj <raj.khem@gmail.com>	2025-03-25 14:57:20 -0700
commit	2822175ed62ca4b17e41edf62fecd1fb5bd0227d (patch)
tree	33491d5bcb6f72f6d57983c21ce96a05387e2423 /meta-python/recipes-devtools/python/python3-m2crypto/0001-setup.py-Make-the-cmd-available.patch
parent	f9951c8a092fcb3f459e5b005d43f968e98e01dd (diff)
download	meta-openembedded-2822175ed62ca4b17e41edf62fecd1fb5bd0227d.tar.gz

krb5: fix CVE-2025-24528

In MIT krb5 release 1.7 and later with incremental propagation enabled, an authenticated attacker can cause kadmind to write beyond the end of the mapped region for the iprop log file, likely causing a process crash. Reference: https://security-tracker.debian.org/tracker/CVE-2025-24528 Upstream-patch: https://github.com/krb5/krb5/commit/78ceba024b64d49612375be4a12d1c066b0bfbd0 Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-m2crypto/0001-setup.py-Make-the-cmd-available.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: