Date: Sat, 14 Feb 2026 18:25:43 +0000 From: Fernando Apeste=?utf-8?Q?gu=C3=ADa?= <fernape@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: ea5760cbbcec - main - security/vuxml: Add munge vulnerability Message-ID: <6990be27.38a4b.622a93b1@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch main has been updated by fernape: URL: https://cgit.FreeBSD.org/ports/commit/?id=ea5760cbbcec3ec1399b94ff792566a9a9e664ef commit ea5760cbbcec3ec1399b94ff792566a9a9e664ef Author: Fernando ApesteguĂa <fernape@FreeBSD.org> AuthorDate: 2026-02-14 18:24:30 +0000 Commit: Fernando ApesteguĂa <fernape@FreeBSD.org> CommitDate: 2026-02-14 18:24:30 +0000 security/vuxml: Add munge vulnerability * CVE-2026-25506 Reported by: Chris Dunlap <chris.m.dunlap@gmail.com> --- security/vuxml/vuln/2026.xml | 38 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) diff --git a/security/vuxml/vuln/2026.xml b/security/vuxml/vuln/2026.xml index 6f01c2980826..e2d618985abe 100644 --- a/security/vuxml/vuln/2026.xml +++ b/security/vuxml/vuln/2026.xml @@ -1,3 +1,41 @@ + <vuln vid="17186409-09d2-11f1-a39c-b42e991fc52e"> + <topic>munge -- CWE-787: Out-of-bounds Write</topic> + <affects> + <package> + <name>munge</name> + <range><lt>0.5.18</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>https://github.com/dun/munge/security/advisories/GHSA-r9cr-jf4v-75gh reports:</p> + <blockquote cite="https://github.com/dun/munge/security/advisories/GHSA-r9cr-jf4v-75gh">; + <p>MUNGE is an authentication service for creating and + validating user credentials. From 0.5 to 0.5.17, local + attacker can exploit a buffer overflow vulnerability in + munged (the MUNGE authentication daemon) to leak + cryptographic key material from process memory. With the + leaked key material, the attacker could forge arbitrary + MUNGE credentials to impersonate any user (including root) + to services that rely on MUNGE for authentication. The + vulnerability allows a buffer overflow by sending a crafted + message with an oversized address length field, corrupting + munged's internal state and enabling extraction of the MAC + subkey used for credential verification. This vulnerability + is fixed in 0.5.18.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2026-25506</cvename> + <url>https://cveawg.mitre.org/api/cve/CVE-2026-25506</url>; + </references> + <dates> + <discovery>2026-02-10</discovery> + <entry>2026-02-14</entry> + </dates> + </vuln> + <vuln vid="424d598b-09c4-11f1-85c5-a8a1599412c6"> <topic>chromium -- security fix</topic> <affects>home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6990be27.38a4b.622a93b1>