CVE-2024-26462
published 2024-02-29CVE-2024-26462: Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
PriorityP416medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
0.44%
34.9th percentile
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | krb5 | < krb5 1.20.1-2+deb12u3 (bookworm) | krb5 1.20.1-2+deb12u3 (bookworm) |
| mit | kerberos_5 | — | — |
| mit | krb5 | >= 0 < 1.20.1-2+deb12u3 | 1.20.1-2+deb12u3 |
| mit | krb5 | >= 0 < 1.21.3-1 | 1.21.3-1 |
| mit | krb5 | >= 0 < 1.21.3-1 | 1.21.3-1 |
| mit | krb5 | >= 0 < 1.17-6ubuntu4.9 | 1.17-6ubuntu4.9 |
| mit | krb5 | >= 0 < 1.19.2-2ubuntu0.6 | 1.19.2-2ubuntu0.6 |
| mit | krb5 | >= 0 < 1.20.1-6ubuntu2.5 | 1.20.1-6ubuntu2.5 |
| msrc | azl3_krb5_1.21.2-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_krb5_1.21.3-1_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM
vendor_debian5.5MEDIUM
vendor_msrc5.5MEDIUM
vendor_redhat5.5MEDIUM
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Kerberos vulnerabilities
vendor_ubuntu·2025-03-03·CVSS 5.3
CVE-2025-24528 [MEDIUM] Kerberos vulnerabilities
Title: Kerberos vulnerabilities
Summary: Several security issues were fixed in Kerberos.
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
se
Red Hat
krb5: Memory leak at /krb5/src/kdc/ndr.c
vendor_redhat·2024-02-28·CVSS 5.5
CVE-2024-26462 [MEDIUM] CWE-401 krb5: Memory leak at /krb5/src/kdc/ndr.c
krb5: Memory leak at /krb5/src/kdc/ndr.c
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
A memory leak flaw was found in krb5 in /krb5/src/kdc/ndr.c. This issue can lead to a denial of service through memory exhaustion.
Statement: In the file ndr.c, a struct named b is defined, and its address is passed to the function k5_buf_init_dynamic. Inside this function, b is referred to as buf, and the malloc function is used to allocate dynamic memory for buf->data. After k5_buf_init_dynamic completes and returns, if an if statement evaluates to true, the program returns. During this process, the memory allocated to b is not freed, leading to a memory leak defect.
Package: krb5 (Red Hat Enterprise Linux 10) - Not affected
Package: krb5 (Red Hat Enterp
Microsoft
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
vendor_msrc·2024-02-13·CVSS 5.5
CVE-2024-26462 [MEDIUM] CWE-401 Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
mitre: mitre
Customer Action Required: Yes
Remediation: CBL-Mariner
Debian
CVE-2024-26462: krb5 - Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/k...
vendor_debian·2024·CVSS 5.5
CVE-2024-26462 [MEDIUM] CVE-2024-26462: krb5 - Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/k...
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
Scope: local
bookworm: resolved (fixed in 1.20.1-2+deb12u3)
bullseye: resolved
forky: resolved (fixed in 1.21.3-1)
sid: resolved (fixed in 1.21.3-1)
trixie: resolved (fixed in 1.21.3-1)
OSV
krb5 vulnerabilities
osv·2025-03-03·CVSS 5.3
CVE-2024-26458 [MEDIUM] krb5 vulnerabilities
krb5 vulnerabilities
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. (CVE-2024-26458,
CVE-2024-26461)
It was discovered that Kerberos incorrectly handled certain memory
operations. A remote attacker could possibly use this issue to cause
Kerberos to consume memory,leading to a denial of service. This issue only
affected Ubuntu 24.04 LTS. (CVE-2024-26462)
It was discovered that the Kerberos kadmind daemon incorrectly handled log
files when incremental propagation was enabled. An authenticated attacker
could use this issue to cause kadmind to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2025-24528)
OSV
CVE-2024-26462: Kerberos 5 (aka krb5) 1
osv·2024-02-29·CVSS 5.5
CVE-2024-26462 [MEDIUM] CVE-2024-26462: Kerberos 5 (aka krb5) 1
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
GHSA
GHSA-rgrc-qmj6-x9mf: Kerberos 5 (aka krb5) 1
ghsa_unreviewed·2024-02-29
CVE-2024-26462 [MEDIUM] CWE-401 GHSA-rgrc-qmj6-x9mf: Kerberos 5 (aka krb5) 1
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2024-26462 krb5: Memory leak at /krb5/src/kdc/ndr.c
bugzilla·2024-02-28·CVSS 5.5
CVE-2024-26462 [MEDIUM] CVE-2024-26462 krb5: Memory leak at /krb5/src/kdc/ndr.c
CVE-2024-26462 krb5: Memory leak at /krb5/src/kdc/ndr.c
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
References:
https://github.com/LuMingYinDetect/krb5_defects/blob/main/krb5_detect_3.md
Discussion:
Created krb5 tracking bugs for this issue:
Affects: fedora-all [bug 2266743]
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 9
Via RHSA-2024:9331 https://access.redhat.com/errata/RHSA-2024:9331
Wiz
CVE-2025-24528 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 7.1
CVE-2025-24528 [HIGH] CVE-2025-24528 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-24528 :
Kerberos vulnerability analysis and mitigation
In MIT Kerberos 5 (aka krb5) before 1.22 (with incremental propagation), there is an integer overflow for a large update size to resize() in kdb_log.c. An authenticated attacker can cause an out-of-bounds write and kadmind daemon crash.
Source : NVD
## 7.1
Score
Published January 16, 2026
Severity HIGH
CNA Score 7.1
Affected Technologies
Kerberos
Rocky Linux
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 42.9
Exploitation Probability (EPSS) 0.2
Affected packages and libraries
crypto-policies
krb5-plugin-preauth-otp
Sources
NVD
AlmaLinux 8 Severity MEDIUM Has Fix Added at: Mar 19, 2025
AlmaLinux 9 Severity MEDI
2024-02-29
Published