GNU SASL <2.2.3 Null Pointer Deref in DIGEST-MD5 Component: CVE-2026-48829 May 2026

In GNU SASL before 2.2.3, DIGEST-MD5 has a NULL pointer dereference affecting both clients and servers, via a known token with no accompanying = character. This occurs in lib/digest-md5/getsubopt.c.

Vulnerability Analysis

CVE-2026-48829 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. NULL pointer dereference issues can occur through a number of flaws, including race conditions, and simple programming omissions.

Products Associated with CVE-2026-48829

Want to know whenever a new CVE is published for Gnu Sasl? stack.watch will email you.

GNU SASL <2.2.3 Null Pointer Deref in DIGEST-MD5 Component
CVE-2026-48829 Published on May 24, 2026

Vulnerability Analysis

Weakness Type

NULL Pointer Dereference

Products Associated with CVE-2026-48829

Affected Versions

GNU SASL <2.2.3 Null Pointer Deref in DIGEST-MD5 ComponentCVE-2026-48829 Published on May 24, 2026

Vulnerability Analysis

Weakness Type

NULL Pointer Dereference

Products Associated with CVE-2026-48829

Affected Versions

GNU SASL <2.2.3 Null Pointer Deref in DIGEST-MD5 Component
CVE-2026-48829 Published on May 24, 2026