CVE-2026-48829PATCHED

gnu · gnu sasl

CVE-2026-48829: In GNU SASL before 2.2.3, DIGEST-MD5 has a NULL pointer dereference affecting both clients and servers, via a known toke

Description

In GNU SASL before 2.2.3, DIGEST-MD5 has a NULL pointer dereference affecting both clients and servers, via a known token with no accompanying = character. This occurs in lib/digest-md5/getsubopt.c.

Affected Products

Vendor	Product	Versions
gnu	gnu sasl	0

References

Related News (1 articles)

Tier C

VulDB23d ago

CVE-2026-48829 | GNU SASL up to 2.2.2 DIGEST-MD5 getsubopt.c null pointer dereference

→ No new info (linked only)

CVSS 3.17.5 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited❌ No

Patch available

2.2.3

CWECWE-476

PublishedMay 24, 2026

Last enriched23d agov2

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

MEDIUMPRE-CVE

GNU gsasl Heap Disclosure in NTLM Client Step

Trending: 23

CRITICALCVE-2026-5450

scanf %mc off-by-one heap buffer overflow

Trending: 11

NONECVE-2026-6846

Binutils: binutils: arbitrary code execution via malformed xcoff object file processing

Trending: 2

NONECVE-2026-5958

Race Condition in GNU Sed

Trending: 1

HIGHCVE-2026-40556

Insecure Directory Permissions in GNU nano Leading to Privilege Abuse

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

May 24, 2026

Discovered by ZDM

May 24, 2026

Updated: affectedVersions, severity, tags

May 24, 2026

Patch Available

Jun 5, 2026

Version History

Last enriched 23d ago

v2Tier C23d ago

Updated affected versions to include 2.2.2, changed severity to MEDIUM, and noted that there is no available exploit.

affectedVersionsseveritytags

via VulDB

v123d ago

Initial creation