CVE-2024-26461
published 2024-02-29CVE-2024-26461: Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
PriorityP431high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
1.13%
62.4th percentile
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | krb5 | — | — |
| mit | kerberos_5 | — | — |
| mit | krb5 | >= 0 < 1.17-6ubuntu4.9 | 1.17-6ubuntu4.9 |
| mit | krb5 | >= 0 < 1.19.2-2ubuntu0.6 | 1.19.2-2ubuntu0.6 |
| mit | krb5 | >= 0 < 1.20.1-6ubuntu2.5 | 1.20.1-6ubuntu2.5 |
| msrc | azl3_krb5_1.21.2-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_krb5_1.21.3-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_krb5_1.19.4-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH
vendor_debian7.5LOW
vendor_msrc7.5HIGH
vendor_redhat7.5HIGH
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
krb5 vulnerabilities
osv·2025-03-03·CVSS 5.3
CVE-2024-26458 [MEDIUM] krb5 vulnerabilities
krb5 vulnerabilities
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2025-24528)
GHSA
GHSA-jc8v-q399-gfq9: Kerberos 5 (aka krb5) 1
ghsa_unreviewed·2024-02-29
CVE-2024-26461 [HIGH] CWE-770 GHSA-jc8v-q399-gfq9: Kerberos 5 (aka krb5) 1
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
OSV
CVE-2024-26461: Kerberos 5 (aka krb5) 1
osv·2024-02-29·CVSS 7.5
CVE-2024-26461 [HIGH] CVE-2024-26461: Kerberos 5 (aka krb5) 1
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
Ubuntu
Kerberos vulnerabilities
vendor_ubuntu·2025-03-03·CVSS 5.3
CVE-2025-24528 [MEDIUM] Kerberos vulnerabilities
Title: Kerberos vulnerabilities
Summary: Several security issues were fixed in Kerberos.
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
se
Red Hat
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
vendor_redhat·2024-02-28·CVSS 7.5
CVE-2024-26461 [HIGH] CWE-401 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
A memory leak flaw was found in krb5 in /krb5/src/lib/gssapi/krb5/k5sealv3.c. This issue can lead to a denial of service through memory exhaustion.
Statement: In the file k5sealv3.c, a variable named plain is defined and its address is passed to alloc_data. Inside alloc_data, plain is called data, and calloc allocates memory for ptr, which is assigned to data->data. If an if condition evaluates to true, the program jumps to an error label using a goto statement, leaving the memory allocated to plain unused and unreleased, leading to a memory leak defect.
Package: krb5 (Red Hat Enterprise Linux 10) - Not affected
Package: k
Microsoft
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
vendor_msrc·2024-02-13·CVSS 7.5
CVE-2024-26461 [HIGH] CWE-770 Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
mitre: mitre
Customer Action Required: Yes
Remediat
Debian
CVE-2024-26461: krb5 - Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/l...
vendor_debian·2024·CVSS 7.5
CVE-2024-26461 [HIGH] CVE-2024-26461: krb5 - Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/l...
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: open
trixie: open
No detection rules found.
No public exploits indexed.
2024-02-29
Published