Packages
- krb5 - MIT Kerberos Network Authentication Protocol
Details
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2025-24528)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2025-24528)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 24.10 oracular | krb5-admin-server – 1.21.3-3ubuntu0.2 | ||
| krb5-kdc – 1.21.3-3ubuntu0.2 | |||
| libgssapi-krb5-2 – 1.21.3-3ubuntu0.2 | |||
| libgssrpc4t64 – 1.21.3-3ubuntu0.2 | |||
| libkdb5-10t64 – 1.21.3-3ubuntu0.2 | |||
| 24.04 noble | krb5-admin-server – 1.20.1-6ubuntu2.5 | ||
| krb5-kdc – 1.20.1-6ubuntu2.5 | |||
| libgssapi-krb5-2 – 1.20.1-6ubuntu2.5 | |||
| libgssrpc4t64 – 1.20.1-6ubuntu2.5 | |||
| libkdb5-10t64 – 1.20.1-6ubuntu2.5 | |||
| 22.04 jammy | krb5-admin-server – 1.19.2-2ubuntu0.6 | ||
| krb5-kdc – 1.19.2-2ubuntu0.6 | |||
| libgssapi-krb5-2 – 1.19.2-2ubuntu0.6 | |||
| libgssrpc4 – 1.19.2-2ubuntu0.6 | |||
| libkdb5-10 – 1.19.2-2ubuntu0.6 | |||
| 20.04 focal | krb5-admin-server – 1.17-6ubuntu4.9 | ||
| krb5-kdc – 1.17-6ubuntu4.9 | |||
| libgssapi-krb5-2 – 1.17-6ubuntu4.9 | |||
| libgssrpc4 – 1.17-6ubuntu4.9 | |||
| libkdb5-9 – 1.17-6ubuntu4.9 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.