Maksim Shudrak

**Name of the Vulnerable Software and Affected Versions** Zeek Network Security Monitor versions prior to 2.6.2 **Description** A NULL pointer dereference in the Kerberos protocol parser can lead to a denial of service (DoS) due to a mishandled case-type index. **Recommendations** For versions prior to 2.6.2, update to version 2.6.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Bro versions through 2.5.5 **Description** The issue is related to a memory leak that could potentially lead to a denial of service (DoS) in the Kerberos protocol parser, located in scripts/base/protocols/krb/main.bro. **Recommendations** For Bro versions through 2.5.5, consider updating to a version that addresses the memory leak issue in the Kerberos protocol parser to prevent potential DoS attacks.