ALSA-2026:16799

[ALSA-2026:16799] Important: krb5 security update

Type:

security

Severity:

important

Release date:

2026-05-13

Description:

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).  

Security Fix(es):  

  * krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read (CVE-2026-40356)
  * krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism (CVE-2026-40355)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	krb5-server-ldap-1.18.2-34.el8_10.aarch64.rpm	22d3b25dd39e2a0745e51e58f2acbcf4a8fc7b8f6889e6e8f764678eb0a59b02
aarch64	krb5-workstation-1.18.2-34.el8_10.aarch64.rpm	2915ee2a84a460a1d7c6938fd9c1546bdc4763471a942346ca0c819dd658b51c
aarch64	krb5-devel-1.18.2-34.el8_10.aarch64.rpm	75aedbabe99b90fc9c6c106a8e8a4172f95d4b3a9dc70c4055e818e1d3dbf251
aarch64	krb5-pkinit-1.18.2-34.el8_10.aarch64.rpm	89651975972bf3dd1b07ae50ffbe822a542455da9cd307db0acd6684654f3fb2
aarch64	libkadm5-1.18.2-34.el8_10.aarch64.rpm	92e0e41e1d38ca89f670fcbb43c1cc03a10818a2a2a3f7f6fc06146f0ffcf922
aarch64	krb5-libs-1.18.2-34.el8_10.aarch64.rpm	9cfd712944f933cf49f7012af6dbd37cd8e9992326a265d6ef928d06bb8e62f1
aarch64	krb5-server-1.18.2-34.el8_10.aarch64.rpm	cca62655bd48c083d334113746159472b186d217457ecb218f8f109901885fe0
i686	krb5-server-1.18.2-34.el8_10.i686.rpm	11f05d6f809711767f1f08b2e33abee8f77c4966245180529c705875d90159e8
i686	krb5-pkinit-1.18.2-34.el8_10.i686.rpm	1af67678838fc1adb2b985c17abb4b23d97f7c00b2346c760819a022f96156b7
i686	libkadm5-1.18.2-34.el8_10.i686.rpm	37c7148a82cceaeb429926bd1a2e0aae9599a720892e0429a736b2f59e0d6fae
i686	krb5-server-ldap-1.18.2-34.el8_10.i686.rpm	93a2a6573bc69f42d0e9d09215e15cda57a44db014a438915bac2f4c9a5958a2
i686	krb5-devel-1.18.2-34.el8_10.i686.rpm	dba79a36356845f1526dbd2384b2c3b9898137c781ce2c0715ed3590fe92c5f9
i686	krb5-libs-1.18.2-34.el8_10.i686.rpm	f69a07f365db0832bf52033a994a105760ba8ad1f9f53b684dcb2d0c17bc158e
ppc64le	krb5-pkinit-1.18.2-34.el8_10.ppc64le.rpm	4163f1a8886e41652ff164777e0d7f8a4a7e72769c70471c87d775c3706e048b
ppc64le	libkadm5-1.18.2-34.el8_10.ppc64le.rpm	61e76a2ae8002d2ed04669f94f47c4335cf268b8631cc2b7d6931d942e8e957e
ppc64le	krb5-libs-1.18.2-34.el8_10.ppc64le.rpm	8f4fef7d19389beaf61c413462cf9b60b4154c006e6b496598ae449e5c6c7661
ppc64le	krb5-server-ldap-1.18.2-34.el8_10.ppc64le.rpm	96b0e9f4c6f7b3d8b11ad3be9154faaa58b46050a769acf6e9c82df709f69206
ppc64le	krb5-workstation-1.18.2-34.el8_10.ppc64le.rpm	9b3380b630d944873b1aa8e6e7363010f3680676d8c85a1d44a4c93f9ebf7d96
ppc64le	krb5-devel-1.18.2-34.el8_10.ppc64le.rpm	dda7130f1b8e8327e280d90cf0688c66a679febfd9abf2eb5b6ca21784d34f21
ppc64le	krb5-server-1.18.2-34.el8_10.ppc64le.rpm	e3b2fdf4d0ca0c9b27d5dbefc08b8c66e84fb17869d5ceb1f3354a5c759088ce
s390x	krb5-pkinit-1.18.2-34.el8_10.s390x.rpm	1fede068760aef20092374ff7b63dd70ec473d60a75dd7f4448fa33c53620d36
s390x	krb5-server-1.18.2-34.el8_10.s390x.rpm	5f4d6d61f54b37738c53ffaebf030d113089b104c4f5b06e807593bdece52c73
s390x	krb5-workstation-1.18.2-34.el8_10.s390x.rpm	9890270a163011629935a9777648feb9a1580b2004714fc491d9ced9fd257ce3
s390x	krb5-server-ldap-1.18.2-34.el8_10.s390x.rpm	9d55b73f742f615f8b45a58bb326ade3e2c3f69f600065fc973ad60ed1f99b04
s390x	krb5-libs-1.18.2-34.el8_10.s390x.rpm	cce748efadf01923e442c24e62d3ac193393340a9ad56dccc321399437dcf219
s390x	krb5-devel-1.18.2-34.el8_10.s390x.rpm	e88dc7c9d98af78fcf90ae1874189a5e6bef4d9c83c00ace828e22bf5cf98871
s390x	libkadm5-1.18.2-34.el8_10.s390x.rpm	f8944fe1120e78cf5c1f534ac5128c47f63cd4fedd27e58faeaa2a6f1697c00f
x86_64	krb5-devel-1.18.2-34.el8_10.x86_64.rpm	07e2e5dcf818fe7ea0615b75e26610f688ab5ce5672cfdb5a02727d75caee486
x86_64	krb5-server-1.18.2-34.el8_10.x86_64.rpm	28c84b7a7441c01930b4dac814765fb3b4bc52b01823b7999aa14de8841bc4ca
x86_64	krb5-server-ldap-1.18.2-34.el8_10.x86_64.rpm	3c42d0e763b4d6d097ac02f50dcdfe7421a1ab8bff4a738b79129b5b241615da
x86_64	krb5-workstation-1.18.2-34.el8_10.x86_64.rpm	407abd923468c3eb41185a40a55937d1ebff04d9fc22b0dc0d0093c6ff333051
x86_64	libkadm5-1.18.2-34.el8_10.x86_64.rpm	a9515c7ef3d8cbcdfd3656e434bca0880f0dc325cf32192ba777860028595fc2
x86_64	krb5-pkinit-1.18.2-34.el8_10.x86_64.rpm	e852c31bfa9733c3ea538797677bcd1b481cdfbd411fefdd330aa25487c20d5b
x86_64	krb5-libs-1.18.2-34.el8_10.x86_64.rpm	fccdb0b269912b7a8e43c8eb2a33fa64bc10d2976efeaaa7702aa4462d901c2d

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.