[ALSA-2026:19145] Important: krb5 security update
Type:
security
Severity:
important
Release date:
2026-05-26
Description:
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC). Security Fix(es): * krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read (CVE-2026-40356) * krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism (CVE-2026-40355) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 krb5-server-1.21.3-10.el10_2.aarch64.rpm 2f6f1ae38b93c4b3456de791e596437a694fe46c77c736ef5caa108148bcba28
aarch64 libkadm5-1.21.3-10.el10_2.aarch64.rpm 2f904be738fd72c1ec3230da321390a42adb7b64f9765ae5c74fbf4699825199
aarch64 krb5-xrealmauthz-1.21.3-10.el10_2.aarch64.rpm 539e9600b3a7e3c76271c1caf3b9a59a2565e7619fb9c2da6520747990b82531
aarch64 krb5-server-ldap-1.21.3-10.el10_2.aarch64.rpm 5c6f0a523afe6deae7248a6aa0977cb4d03f7433fb8971763acf9e6849e45910
aarch64 krb5-workstation-1.21.3-10.el10_2.aarch64.rpm 96eff6cfa700f8f0438b06953874fa29c21d9c3c277f37992ae781d167cf1a86
aarch64 krb5-libs-1.21.3-10.el10_2.aarch64.rpm a6bd66ee0fbb1744667175e3312bd7e30b344ad35b9fe9be53f5382e399546fa
aarch64 krb5-pkinit-1.21.3-10.el10_2.aarch64.rpm b3f1dff86c7548ed49a00376e4ed6d0d9956b19b4514df0d17eacc9e09765732
aarch64 krb5-devel-1.21.3-10.el10_2.aarch64.rpm f5c5d16fdc0f9921f40fa48c89a561db089ac4c39bb78917d27768d4e00c9dd2
ppc64le krb5-libs-1.21.3-10.el10_2.ppc64le.rpm 39695130d282eb009c144d7b24b7dbf0e4b891b1e4f78577e425dff3c979dcb8
ppc64le krb5-devel-1.21.3-10.el10_2.ppc64le.rpm 418af39235397224d3a01cf3ff88a62c3181ac32c456a52ca32ff1ab0eab5c6b
ppc64le krb5-xrealmauthz-1.21.3-10.el10_2.ppc64le.rpm 5965ca3a9dbd813c1d3f65a0e68ce3bbebf592c70cfe39bf289948d9ea8f1056
ppc64le krb5-server-ldap-1.21.3-10.el10_2.ppc64le.rpm 63d716ecc10fe6b0b08357e16c8558b5f42bb9e361beb9c8253f1305d24a18ed
ppc64le krb5-server-1.21.3-10.el10_2.ppc64le.rpm 85f0c01e03ed61fd9af9a2d458853e0cf9c9ae92253ea7eb5f0873aad3d0dde3
ppc64le krb5-workstation-1.21.3-10.el10_2.ppc64le.rpm c8fdd6487f3ae5ca8228227c9ee743e949ec7120ea208c95d01436409cc34efa
ppc64le krb5-pkinit-1.21.3-10.el10_2.ppc64le.rpm d68411bc6ed788ca950b62fe20659ea06871dea176a4674dad8d1431992fb47b
ppc64le libkadm5-1.21.3-10.el10_2.ppc64le.rpm e1ae7fc42823a54d807bb7ee8b23570a82a0106615f57e3c0ab5a42e008f5341
s390x krb5-devel-1.21.3-10.el10_2.s390x.rpm 15138dd101de09e6b1fd19770c4d7d4f05f57f300ee82dd66c057eae58cc520b
s390x krb5-server-1.21.3-10.el10_2.s390x.rpm 278505d56ed1b25168d302018008c1925dd9222b19223f7f290cb9b575d6a906
s390x krb5-workstation-1.21.3-10.el10_2.s390x.rpm 5b8a6ceebec976ef83e35929a84883090584e6d7bde4bb7d980e2e7b07984b1c
s390x krb5-xrealmauthz-1.21.3-10.el10_2.s390x.rpm 61572645ab5074cc7fa4a716f4a4df51546b45230d079475b6419368081eb403
s390x krb5-server-ldap-1.21.3-10.el10_2.s390x.rpm b043acadc7c161ec71eaa903e89fb7f6bd8a6aa638c90e7a3bed3ebf201157a9
s390x libkadm5-1.21.3-10.el10_2.s390x.rpm b23a162570e8ed8a2aecc76320d3e86bc80c551aee05af2f1ed5d9d35df6da09
s390x krb5-pkinit-1.21.3-10.el10_2.s390x.rpm df2251890e2ae43406cc62b0e135efab4b07cea276bb332d9be6e6360cf2e779
s390x krb5-libs-1.21.3-10.el10_2.s390x.rpm e05a5667ec685c174ce1efaa617617310cbf6400aead2413b9a0276873d78d2c
x86_64 krb5-libs-1.21.3-10.el10_2.x86_64.rpm 342b3318f3d727ee54b861529c6fe00b3ebe859bf46a611315579e567be2f72d
x86_64 krb5-pkinit-1.21.3-10.el10_2.x86_64.rpm 4db36bfaffecdd5596ebaa2b956ed8bbf35665dcb5663daace4a78d620120a18
x86_64 krb5-server-ldap-1.21.3-10.el10_2.x86_64.rpm 5ca8495d4e0d8c04ab68fd7ee42f3eb3881f492d05acb32dc98585a875c9e0e0
x86_64 krb5-server-1.21.3-10.el10_2.x86_64.rpm a85bb3158829c48b7e3023b6f7f5eeb249862062b5d7850460196c5242beaa62
x86_64 krb5-devel-1.21.3-10.el10_2.x86_64.rpm ad22f25fc84a3696d7b10b42b928b37d7cd86161e4e28079e5fa20bae12a3e48
x86_64 krb5-workstation-1.21.3-10.el10_2.x86_64.rpm c06da791aba86c111d71b6b21aa9e04ad90a982691e1454ff4bdd55affe55272
x86_64 krb5-xrealmauthz-1.21.3-10.el10_2.x86_64.rpm d101b6a099a41f1f18ec11ff8338cc9f09e738225510abf75a33668ac1682e7d
x86_64 libkadm5-1.21.3-10.el10_2.x86_64.rpm da7ada3d3d5424ceb28a1cfa468a23841e8588191988bd837af56eaead99f0bc
x86_64_v2 krb5-server-ldap-1.21.3-10.el10_2.x86_64_v2.rpm 0a7039b8e7222d545a2dbcecc4c7160f1bc3e815001d67df4fc25cdc3505e4a5
x86_64_v2 krb5-server-1.21.3-10.el10_2.x86_64_v2.rpm 24dd3e7f310c74519dcd8645b57577acdcff41c4acc08021b23eba2e31fed0ce
x86_64_v2 libkadm5-1.21.3-10.el10_2.x86_64_v2.rpm 6d361ebc941439bca70140cb603402c043fb03fa1a674f57080cb513f1448a2d
x86_64_v2 krb5-libs-1.21.3-10.el10_2.x86_64_v2.rpm 775049ae7f1bfdb95c805f419fb79689d69c9ca44722ec5043706b0674b2a855
x86_64_v2 krb5-devel-1.21.3-10.el10_2.x86_64_v2.rpm 8f3c574a5d5fdfce6a2b6942cd48c9268a8882f0ac2d18f7976b3aa6b42fbe11
x86_64_v2 krb5-pkinit-1.21.3-10.el10_2.x86_64_v2.rpm 91a54a2dae768a3200424b85ea639098bd826c90f7dc0e04e4140c9b194fb155
x86_64_v2 krb5-xrealmauthz-1.21.3-10.el10_2.x86_64_v2.rpm 953f862986b8ca04ff05f552db5d05c401c326456f56ec9820c3fe708adaf047
x86_64_v2 krb5-workstation-1.21.3-10.el10_2.x86_64_v2.rpm f0f050e9e8288ae18dc2ee1cd0ba77fbc9bead946c4e5d8be8f6454687affdaa
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.