CVE-2026-25506

Name of the Vulnerable Software and Affected Versions MUNGE versions 0.5.0 through 0.5.17

Description MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service used for creating and validating user credentials, particularly in High-Performance Computing (HPC) clusters utilizing Slurm. A buffer overflow exists in the

munged

daemon, specifically within the

 msg unpack

function when processing messages. This flaw allows a local attacker to potentially leak cryptographic key material from process memory by sending a crafted message with an oversized address length field. Successful exploitation could enable the attacker to forge MUNGE credentials, potentially gaining unauthorized access and privileges, including root access, to services relying on MUNGE authentication. The vulnerability involves a heap buffer overflow where a value in the

m->addr len

field is used as the copy length, allowing up to 255 bytes to be written into a 4-byte structure. This can overwrite heap objects and potentially control memory within the

munged

process.

Recommendations MUNGE versions prior to 0.5.18 are affected. Update to MUNGE version 0.5.18 or later to address this issue.