CVE-2026-40356 | MIT Kerberos 5 up to 1.22.2 /etc/gss/mech gss_accept_sec_context integer underflow

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability, which was classified as critical, has been found in MIT Kerberos 5 up to 1.22.2. The impacted element is the function gss_accept_sec_context of the file /etc/gss/mech. The manipulation leads to integer underflow.

This vulnerability is uniquely identified as CVE-2026-40356. The attack is possible to be carried out remotely. No exploit exists.

It is advisable to upgrade the affected component.

CVE-2026-40356 | MIT Kerberos 5 up to 1.22.2 /etc/gss/mech gss_accept_sec_context integer underflow

Post correlati

CVE-2024-2912 | BentoML Framework up to 1.2.4 POST Request insecure default initialization of resource

CVE-2025-22475 | Dell PowerProtect DD up to 7.10.1.40/7.13.1.10/8.1.0.10 a cryptographic primitive with a risky implementation (dsa-2025-022)

CVE-2023-6494 | WPC Smart Quick View for WooCommerce Plugin up to 4.0.2 on WordPress cross site scripting

CVE-2024-57262 | Barebox prior 2025.01.0 SquashFS Symlink Resolution integer overflow