enterprise-support team mailing list archive

Thread
Date

enterprise-support team
Mailing list archive
Message #10547

[Question #817828]: Expected timeline for CVE-2024-37370 & CVE-2024-37371 fix

To: enterprise-support@xxxxxxxxxxxxxxxxxxx
From: Rutuja Chaudhary <question817828@xxxxxxxxxxxxxxxxxxxxx>
Date: Mon, 29 Jul 2024 06:05:43 -0000
Reply-to: question817828@xxxxxxxxxxxxxxxxxxxxx
Sender: noreply@xxxxxxxxxxxxx

New question #817828 on krb5 in Ubuntu:
https://answers.launchpad.net/ubuntu/+source/krb5/+question/817828

New vulnerabilities CVE-2024-37370 & CVE-2024-37371 are reported in the krb5-user package.  The krb5 git repository has already fixed these vulnerabilities and released a new version. In the Ubuntu focal krb5-user package changelog, I don't see any fix pulled in yet. When can the fix be implemented in the Ubuntu focal krb5-user package?

-- 
You received this question notification because your team Ubuntu
Server/Client Support Team is an answer contact for krb5 in Ubuntu.