krb5: fix CVE-2025-24528 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Divya Chellam <divya.chellam@windriver.com>	2025-03-25 10:49:14 +0000
committer	Armin Kuster <akuster808@gmail.com>	2025-03-27 14:04:21 -0400
commit	67ad83dd7c2485dae0c90eac345007af6195b84d (patch)
tree	2ba35a3a73016859aa6a83d883695b1e9711ed90 /meta-python/recipes-devtools/python/python3-sqlparse/CVE-2024-4340.patch
parent	f23c8d7362aa8b23a18e38ccfb22b6ed666dab07 (diff)
download	meta-openembedded-67ad83dd7c2485dae0c90eac345007af6195b84d.tar.gz

krb5: fix CVE-2025-24528

In MIT krb5 release 1.7 and later with incremental propagation enabled, an authenticated attacker can cause kadmind to write beyond the end of the mapped region for the iprop log file, likely causing a process crash. Reference: https://security-tracker.debian.org/tracker/CVE-2025-24528 Upstream-patch: https://github.com/krb5/krb5/commit/78ceba024b64d49612375be4a12d1c066b0bfbd0 Signed-off-by: Divya Chellam <divya.chellam@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-sqlparse/CVE-2024-4340.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: