CVE-2024-26458
published 2024-02-29CVE-2024-26458: Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
PriorityP422medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
0.81%
52.5th percentile
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | krb5 | — | — |
| mit | kerberos_5 | — | — |
| mit | krb5 | >= 0 < 1.17-6ubuntu4.9 | 1.17-6ubuntu4.9 |
| mit | krb5 | >= 0 < 1.19.2-2ubuntu0.6 | 1.19.2-2ubuntu0.6 |
| mit | krb5 | >= 0 < 1.20.1-6ubuntu2.5 | 1.20.1-6ubuntu2.5 |
| msrc | azl3_krb5_1.21.3-2_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_krb5_1.19.4-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
osv5.3MEDIUM
vendor_debian5.3LOW
vendor_msrc5.3MEDIUM
vendor_redhat5.3MEDIUM
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Kerberos vulnerabilities
vendor_ubuntu·2025-03-03·CVSS 5.3
CVE-2025-24528 [MEDIUM] Kerberos vulnerabilities
Title: Kerberos vulnerabilities
Summary: Several security issues were fixed in Kerberos.
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
se
Red Hat
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
vendor_redhat·2024-02-28·CVSS 5.3
CVE-2024-26458 [MEDIUM] CWE-401 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
A memory leak flaw was found in krb5 in /krb5/src/lib/rpc/pmap_rmt.c. This issue can lead to a denial of service through memory exhaustion.
Statement: In pmap_rmt.c, a variable named port_ptr is defined and its address is passed to gssrpc_xdr_reference, where it is called pp. The program uses the macro mem_alloc (which refers to malloc) to allocate dynamic memory for pp. After allocation, if the xdr_u_int32(xdrs, &crp->resultslen) call within the if condition returns false, the overall if statement evaluates to false. The program then returns without using or freeing the memory allocated to port_ptr, resulting in a memory leak.
Package: krb5 (Red Hat En
Microsoft
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
vendor_msrc·2024-02-13·CVSS 5.3
CVE-2024-26458 [MEDIUM] Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
mitre: mitre
Customer Action Required: Yes
Remediation: CBL-Mariner Relea
Debian
CVE-2024-26458: krb5 - Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rm...
vendor_debian·2024·CVSS 5.3
CVE-2024-26458 [MEDIUM] CVE-2024-26458: krb5 - Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rm...
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
OSV
krb5 vulnerabilities
osv·2025-03-03·CVSS 5.3
CVE-2024-26458 [MEDIUM] krb5 vulnerabilities
krb5 vulnerabilities
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2025-24528)
OSV
CVE-2024-26458: Kerberos 5 (aka krb5) 1
osv·2024-02-29·CVSS 5.3
CVE-2024-26458 [MEDIUM] CVE-2024-26458: Kerberos 5 (aka krb5) 1
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
GHSA
GHSA-qp5h-mm28-4jq3: Kerberos 5 (aka krb5) 1
ghsa_unreviewed·2024-02-29
CVE-2024-26458 [MEDIUM] CWE-401 GHSA-qp5h-mm28-4jq3: Kerberos 5 (aka krb5) 1
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.
No detection rules found.
No public exploits indexed.
2024-02-29
Published