漏洞关键信息 基本信息 Topic: Network authentication attack via pam_krb5 CVE Name: CVE-2023-3326 Announced: 2023-08-01 Affected Versions: All supported versions of FreeBSD Category: core Module: pam_krb5 影响与风险 Impact: The impact described in FreeBSD-SA-23:04.pam_krb5 persists. 解决方案 Solution: - Upgrade your vulnerable system to a supported FreeBSD stable or release/security branch dated after the correction date. - Use the tool for binary updates. - Apply source code patches from the FreeBSD security advisory site. 工作区建议 (Workaround) If not using Kerberos, ensure is missing and is commented out. If not using , ensure it is commented out. If using , ensure you have a keytab on your system. 补丁细节 Git commit hashes for the fix: - stable/13: d295e418ae7e - releng/13.2: 9b45d8eddac - releng/13.1: 140f65a20533 - stable/12: r373127 - releng/12.4: r373150 参考 CVE-2023-3326