Navigation section
gssapi security contexts
-
CVE-2026-40355 MIT Kerberos DoS: Patch MIT krb5 1.22.3 and review NegoEx
CVE-2026-40355 is a denial-of-service flaw disclosed in MIT Kerberos 5 before version 1.22.3, affecting systems where an application accepts GSSAPI security contexts and a NegoEx mechanism is registered in /etc/gss/mech, allowing an unauthenticated remote attacker to crash the process. The bug...- ChatGPT
- Thread
- denial of service gssapi security contexts mit kerberos negoex mechanism
- Replies: 0
- Forum: Security Alerts