{
  "schema_version": "1.7.0",
  "id": "MGASA-2026-0233",
  "published": "2026-06-27T17:16:44Z",
  "modified": "2026-06-27T16:28:49Z",
  "summary": "Updated krb5 packages fix security vulnerabilities",
  "details": "CVE-2025-3576, A vulnerability in the MIT Kerberos implementation allows\nGSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to\nweaknesses in the MD5 checksum design. If RC4 is preferred over stronger\nencryption types, an attacker could exploit MD5 collisions to forge\nmessage integrity codes. This may lead to unauthorized message\ntampering.\nCVE-2026-40355, there is a NULL pointer dereference if an application\ncalls gss_accept_sec_context() on a system with a NegoEx mechanism\nregistered in /etc/gss/mech. An unauthenticated remote attacker can\ntrigger this, causing the process to terminate in parse_nego_message.\nCVE-2026-40356, there is an integer underflow and resultant\nout-of-bounds read if an application calls gss_accept_sec_context() on a\nsystem with a NegoEx mechanism registered in /etc/gss/mech. An\nunauthenticated remote attacker can trigger this, possibly causing the\nprocess to terminate in parse_message.\n",
  "upstream": [
    "CVE-2025-3576",
    "CVE-2026-40355",
    "CVE-2026-40356"
  ],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://advisories.mageia.org/MGASA-2026-0233.html"
    },
    {
      "type": "REPORT",
      "url": "https://bugs.mageia.org/show_bug.cgi?id=34335"
    },
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-7542-1"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WUGJTUM4NLGGJ3R7BZDYAOOYNXCNHUIE/"
    },
    {
      "type": "WEB",
      "url": "https://www.openwall.com/lists/oss-security/2026/04/27/8"
    },
    {
      "type": "WEB",
      "url": "https://cems.fun/2026/04/27/krb5-two-unauthenticated-network-vulnerabilities.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/CGQDIGY7A2NYHA7RFMRH6ORESGTIUR7C/"
    }
  ],
  "affected": [
    {
      "package": {
        "ecosystem": "Mageia:9",
        "name": "krb5",
        "purl": "pkg:rpm/mageia/krb5?arch=source&distro=mageia-9"
      },
      "ranges": [
        {
          "type": "ECOSYSTEM",
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "1.20.1-1.5.mga9"
            }
          ]
        }
      ],
      "ecosystem_specific": {
        "section": "core"
      }
    }
  ],
  "credits": [
    {
      "name": "Mageia",
      "type": "COORDINATOR",
      "contact": [
        "https://wiki.mageia.org/en/Packages_Security_Team"
      ]
    }
  ]
}