Bug Fix Advisory krb5 bug fix update

Advisory: RHBA-2006:0209-5
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2006-03-21
Last updated on: 2006-03-21
Affected Products: Red Hat Enterprise Linux AS (v. 2.1)
Red Hat Enterprise Linux ES (v. 2.1)
Red Hat Enterprise Linux WS (v. 2.1)
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
OVAL: N/A

Details

Updated krb5 packages that fix a bug are now available.

Kerberos is a network authentication system. The krb5 packages include
libraries, a dialog, server programs, and basic client programs that enable
Kerberos to function.

The krb5_parse_name() function is used to convert the string representation
of a Kerberos principal name into a krb5_principal structure. When the
string representation of a user's principal did not explicitly include a
realm name, krb5_parse_name() used the name of the system's default realm,
even if the calling application had previously used the
krb5_set_default_realm() function to override this value. This bug made it
more difficult for applications such as pam_krb5 to support authenticating
to realms other than the system's default.

Users of krb5 should upgrade to these updated packages, which resolve this
issue.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Enterprise Linux AS (v. 2.1)
SRPMS:
krb5-1.2.2-40.src.rpm
File outdated by:  RHSA-2008:0181		     17c1be65f0e245a6e7aa25f416df18a3
 
IA-32:
krb5-devel-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     7f6aae48f3998111fcd16c50f51f4aac
krb5-libs-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     3c5bc5336cf1e5dc7feb7733db93440c
krb5-server-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     d2df52319dd5357b29d6767926bebef9
krb5-workstation-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     0ba3ba0f3d7aa7ec8afc19ba573d2284
 
IA-64:
krb5-devel-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     418b51727895e587d44ae0b8dbc64c63
krb5-libs-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     e4b75bb5002aa22712be0a9b56ed4f90
krb5-server-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     d8d750e262b206e50e2a539bd44867bc
krb5-workstation-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     ce110a5cd6763903f694c3f42007f14c
 
Red Hat Enterprise Linux ES (v. 2.1)
SRPMS:
krb5-1.2.2-40.src.rpm
File outdated by:  RHSA-2008:0181		     17c1be65f0e245a6e7aa25f416df18a3
 
IA-32:
krb5-devel-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     7f6aae48f3998111fcd16c50f51f4aac
krb5-libs-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     3c5bc5336cf1e5dc7feb7733db93440c
krb5-server-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     d2df52319dd5357b29d6767926bebef9
krb5-workstation-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     0ba3ba0f3d7aa7ec8afc19ba573d2284
 
Red Hat Enterprise Linux WS (v. 2.1)
SRPMS:
krb5-1.2.2-40.src.rpm
File outdated by:  RHSA-2008:0181		     17c1be65f0e245a6e7aa25f416df18a3
 
IA-32:
krb5-devel-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     7f6aae48f3998111fcd16c50f51f4aac
krb5-libs-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     3c5bc5336cf1e5dc7feb7733db93440c
krb5-server-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     d2df52319dd5357b29d6767926bebef9
krb5-workstation-1.2.2-40.i386.rpm
File outdated by:  RHSA-2008:0181		     0ba3ba0f3d7aa7ec8afc19ba573d2284
 
Red Hat Linux Advanced Workstation 2.1 for the Itanium Processor
SRPMS:
krb5-1.2.2-40.src.rpm
File outdated by:  RHSA-2008:0181		     17c1be65f0e245a6e7aa25f416df18a3
 
IA-64:
krb5-devel-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     418b51727895e587d44ae0b8dbc64c63
krb5-libs-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     e4b75bb5002aa22712be0a9b56ed4f90
krb5-server-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     d8d750e262b206e50e2a539bd44867bc
krb5-workstation-1.2.2-40.ia64.rpm
File outdated by:  RHSA-2008:0181		     ce110a5cd6763903f694c3f42007f14c
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

179061 - [PATCH] krb5_parse_name() doesn't track changes to default realm


Keywords

krb5, name, parse

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/