---

CVE-2024-37371 - log back

CVE-2024-37371 edited at 06 Jul 2024 16:37:07
Type	- Unknown + Denial of service

CVE-2024-37371 edited at 06 Jul 2024 16:35:42
Remote	- Unknown + Remote

CVE-2024-37371 edited at 06 Jul 2024 16:34:00
References	+ https://github.com/krb5/krb5/commit/55fbf435edbe2e92dd8101669b1ce7144bc96fef

CVE-2024-37371 edited at 06 Jul 2024 16:33:04
Severity	- Unknown + Medium
Description	+ In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.
References
Notes

CVE-2024-37371 created at 06 Jul 2024 16:29:54