vulnerability

Rocky Linux: CVE-2024-37371: mysql-8.0 (Multiple Advisories)

Try Surface Command
Back to search
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:N/A:C)
Published
Jun 28, 2024
Added
Feb 27, 2025
Modified
Aug 13, 2025

Description

In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.

Solutions

rocky-upgrade-krb5-debuginforocky-upgrade-krb5-debugsourcerocky-upgrade-krb5-develrocky-upgrade-krb5-devel-debuginforocky-upgrade-krb5-libsrocky-upgrade-krb5-libs-debuginforocky-upgrade-krb5-pkinitrocky-upgrade-krb5-pkinit-debuginforocky-upgrade-krb5-serverrocky-upgrade-krb5-server-debuginforocky-upgrade-krb5-server-ldaprocky-upgrade-krb5-server-ldap-debuginforocky-upgrade-krb5-workstationrocky-upgrade-krb5-workstation-debuginforocky-upgrade-libkadm5rocky-upgrade-libkadm5-debuginforocky-upgrade-mecabrocky-upgrade-mecab-debuginforocky-upgrade-mecab-debugsourcerocky-upgrade-mecab-develrocky-upgrade-mecab-ipadicrocky-upgrade-mecab-ipadic-eucjprocky-upgrade-mysqlrocky-upgrade-mysql-commonrocky-upgrade-mysql-debuginforocky-upgrade-mysql-debugsourcerocky-upgrade-mysql-develrocky-upgrade-mysql-devel-debuginforocky-upgrade-mysql-errmsgrocky-upgrade-mysql-libsrocky-upgrade-mysql-libs-debuginforocky-upgrade-mysql-serverrocky-upgrade-mysql-server-debuginforocky-upgrade-mysql-testrocky-upgrade-mysql-test-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today