Explore top 10 tips to secure your open-source projects now. Read More
×Important: krb5 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:16799", "synopsis": "Important: krb5 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for krb5.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).\n\nSecurity Fix(es):\n\n* krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read (CVE-2026-40356)\n\n* krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism (CVE-2026-40355)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2463368", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2463368", "description": ""}, {"ticket": "2463370", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2463370", "description": ""}], "cves": [{"name": "CVE-2026-40355", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40355", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-476"}, {"name": "CVE-2026-40356", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40356", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-191"}],"references": [], "publishedAt": "2026-05-14T18:00:46.647307Z", "rpms": {"Rocky Linux 8": {"nvras": ["krb5-devel-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-0:1.18.2-34.el8_10.src.rpm", "krb5-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-debugsource-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-debugsource-0:1.18.2-34.el8_10.i686.rpm", "krb5-debugsource-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-devel-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-devel-0:1.18.2-34.el8_10.i686.rpm", "krb5-devel-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-devel-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-devel-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-libs-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-libs-0:1.18.2-34.el8_10.i686.rpm", "krb5-libs-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-libs-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-libs-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-libs-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-pkinit-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-pkinit-0:1.18.2-34.el8_10.i686.rpm", "krb5-pkinit-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-pkinit-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-pkinit-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-pkinit-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-ldap-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-ldap-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-ldap-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-server-ldap-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-server-ldap-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "krb5-server-ldap-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "krb5-workstation-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-workstation-0:1.18.2-34.el8_10.x86_64.rpm","krb5-workstation-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "krb5-workstation-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm", "libkadm5-0:1.18.2-34.el8_10.aarch64.rpm", "libkadm5-0:1.18.2-34.el8_10.i686.rpm", "libkadm5-0:1.18.2-34.el8_10.x86_64.rpm", "libkadm5-debuginfo-0:1.18.2-34.el8_10.aarch64.rpm", "libkadm5-debuginfo-0:1.18.2-34.el8_10.i686.rpm", "libkadm5-debuginfo-0:1.18.2-34.el8_10.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Critical krb5 security update for Rocky Linux 8 addressing denial of service issues. Be sure to patch promptly for safety.. Rocky Linux, krb5 security, important update, denial of service, software patch. . Severity: Important. LinuxSecurity.com Team
Several security issues were fixed in systemd.. ========================================================================== Ubuntu Security Notice USN-8119-2 March 23, 2026 systemd vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in systemd. Software Description: - systemd: system and service manager Details: USN-8119-1 fixed vulnerabilities in systemd. This update provides the corresponding updates for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that systemd incorrectly handled certain cgroup paths. A local attacker could possibly use this issue to cause systemd to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2026-29111) It was discovered that the systemd udev component incorrectly handled certain fields received from the kernel. An attacker with a malicious device could possibly use this issue to execute arbitrary code as an administrator (root). Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS libsystemd0 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro libudev1 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro systemd 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro udev 245.4-4ubuntu3.24+esm3 Available with Ubuntu Pro Ubuntu 18.04 LTS libudev1 237-3ubuntu10.57+esm3 Available with Ubuntu Pro udev 237-3ubuntu10.57+esm3 Available with Ubuntu Pro Ubuntu 16.04 LTS libudev1 229-4ubuntu21.31+esm4 Available with Ubuntu Pro udev 229-4ubuntu21.31+esm4 Available with Ubuntu Pro Ubuntu 14.04 LTS libudev1 204-5ubuntu20.31+esm3 Available with Ubuntu Pro udev 204-5ubuntu20.31+esm3 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8119-2 https://ubuntu.com/security/notices/USN-8119-1 CVE-2026-29111 . Multiple security issues addressed in systemd for Ubuntu affecting several LTS versions with critical risks.. systemd security update, Ubuntu 20.04 LTS advisory, denial of service systemd, arbirtary code execution systemd. . Severity: Critical. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.