{"id":"CLSA-els_os-almalinux9.2fips-2026:1772572505","summary":"munge: Fix of CVE-2026-25506","details":"- CVE-2026-25506: fix buffer overflow in message parsing and add bounds checks\n  and input validation for address length; prevent leak of cryptographic MAC\n  subkey and forging of arbitrary credentials","modified":"2026-05-11T05:35:25.743758Z","published":"2026-03-03T21:15:10Z","upstream":["CVE-2026-25506"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1772572505.html"}],"affected":[{"package":{"name":"munge","ecosystem":"TuxCare:AlmaLinux","purl":"pkg:tuxcare/munge"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.5.13-13.el9_6.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2fips/CLSA-els_os-almalinux9.2fips-2026:1772572505.json"}},{"package":{"name":"munge-devel","ecosystem":"TuxCare:AlmaLinux","purl":"pkg:tuxcare/munge-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.5.13-13.el9_6.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2fips/CLSA-els_os-almalinux9.2fips-2026:1772572505.json"}},{"package":{"name":"munge-libs","ecosystem":"TuxCare:AlmaLinux","purl":"pkg:tuxcare/munge-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.5.13-13.el9_6.tuxcare.els1"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2fips/CLSA-els_os-almalinux9.2fips-2026:1772572505.json"}}],"schema_version":"1.7.5"}