- Issued:
- 2007-05-01
- Updated:
- 2007-05-01
RHBA-2007:0238 - Bug Fix Advisory
Synopsis
krb5 bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated krb5 packages that fix several bugs are now available.
Description
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of cleartext passwords.
This update addresses the following issues:
- Several non-binary files in the krb5-devel package contain information
about the target platform for which the package was built. On multilib
systems, these files created file-level package conflicts which prevented
installation of more than one version of the package on a system.
- The krb5_parse_name() function is used to convert the string representation
of a Kerberos principal name into a krb5_principal structure. When the
string representation of a user's principal did not explicitly include a
realm name, krb5_parse_name() used the name of the system's default realm,
even if the calling application had previously used the
krb5_set_default_realm() function to override this value.
- If the krb5_get_init_creds_keytab() function failed to obtain initial
credentials using the default KDC, it attempted to contact the master KDC
for the realm. If it was unable to locate a master KDC, the error code
that it returned indicated that the KDC could not be located, rather than
the error that was reported by the KDC that it first contacted.
- After successfully authenticating a user and spawning a shell, ksu always
reported an error via its exit status, even if the shell exited without
indicating an error had occurred.
- The kshd daemon erroneously sent a SIGTERM signal to members of its
child's process group when reporting that its child had exited.
All users of Kerberos V5 should upgrade to these updated packages, which
contain backported patches to correct these issues.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
Fixes
- BZ - 179062 - [PATCH] krb5_parse_name() doesn't track changes to default realm
- BZ - 180671 - failure to find a master kdc masks an error returned from a non-master
- BZ - 202191 - multilib -devel conflicts for krb5
- BZ - 209512 - [RHEL4] krb5-workstation : ksu fails on exit
- BZ - 219137 - kshd stops processes if these are in the background.
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 4
SRPM | |
---|---|
krb5-1.3.4-47.src.rpm | SHA-256: 324cf0ee51693525a7bf8390271da0e04f78cda89b4c71774e94e762ccb4509e |
x86_64 | |
krb5-devel-1.3.4-47.x86_64.rpm | SHA-256: d22fa09029de0c1c09dc184306003a5cbe066e6d4cb8cf449fe4462b8b498355 |
krb5-devel-1.3.4-47.x86_64.rpm | SHA-256: d22fa09029de0c1c09dc184306003a5cbe066e6d4cb8cf449fe4462b8b498355 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.x86_64.rpm | SHA-256: abf6833bc79d82eaabff537c738d42df7751600c9f6a27b2f163b6bc4c44fd51 |
krb5-libs-1.3.4-47.x86_64.rpm | SHA-256: abf6833bc79d82eaabff537c738d42df7751600c9f6a27b2f163b6bc4c44fd51 |
krb5-server-1.3.4-47.x86_64.rpm | SHA-256: ba7f45e9ad43de025ce8472182a6b895812f42f596a0e843af06f8221bcface1 |
krb5-server-1.3.4-47.x86_64.rpm | SHA-256: ba7f45e9ad43de025ce8472182a6b895812f42f596a0e843af06f8221bcface1 |
krb5-workstation-1.3.4-47.x86_64.rpm | SHA-256: e1bd33f575d1ea4aa45a6ceab40cf56ddbdd2fefeac59c1f6d877c36bffc754b |
krb5-workstation-1.3.4-47.x86_64.rpm | SHA-256: e1bd33f575d1ea4aa45a6ceab40cf56ddbdd2fefeac59c1f6d877c36bffc754b |
ia64 | |
krb5-devel-1.3.4-47.ia64.rpm | SHA-256: af1037380982fda753fdbc5defd2be45f5b0f2fde6e88c4b6aaffc7504f304a6 |
krb5-devel-1.3.4-47.ia64.rpm | SHA-256: af1037380982fda753fdbc5defd2be45f5b0f2fde6e88c4b6aaffc7504f304a6 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.ia64.rpm | SHA-256: 9e846d4d348d2462e1ec865b4f3facaf730f33f3f1384dd7cd6a0df5f37cc06a |
krb5-libs-1.3.4-47.ia64.rpm | SHA-256: 9e846d4d348d2462e1ec865b4f3facaf730f33f3f1384dd7cd6a0df5f37cc06a |
krb5-server-1.3.4-47.ia64.rpm | SHA-256: a5ed05cf711b93e04a747d813a9e3017eb0d461db997efd9ca8b93f09872d805 |
krb5-server-1.3.4-47.ia64.rpm | SHA-256: a5ed05cf711b93e04a747d813a9e3017eb0d461db997efd9ca8b93f09872d805 |
krb5-workstation-1.3.4-47.ia64.rpm | SHA-256: 4512d8dd7a3e9e46e272c820c652d038a0ab45cbeea806ea04c51ee3cef52df2 |
krb5-workstation-1.3.4-47.ia64.rpm | SHA-256: 4512d8dd7a3e9e46e272c820c652d038a0ab45cbeea806ea04c51ee3cef52df2 |
i386 | |
krb5-devel-1.3.4-47.i386.rpm | SHA-256: 585058c2e24b078bc471e817eb1fbcb34a5113b59e9f2dc7604f8af0a0f1507b |
krb5-devel-1.3.4-47.i386.rpm | SHA-256: 585058c2e24b078bc471e817eb1fbcb34a5113b59e9f2dc7604f8af0a0f1507b |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-server-1.3.4-47.i386.rpm | SHA-256: bc3688d86de32fd2287e81f99e74d26a1964c2982f75018b9840824df6de0c12 |
krb5-server-1.3.4-47.i386.rpm | SHA-256: bc3688d86de32fd2287e81f99e74d26a1964c2982f75018b9840824df6de0c12 |
krb5-workstation-1.3.4-47.i386.rpm | SHA-256: f7ccbb977227d220db5328156613278d76a1089322a098b2e802516049f573de |
krb5-workstation-1.3.4-47.i386.rpm | SHA-256: f7ccbb977227d220db5328156613278d76a1089322a098b2e802516049f573de |
Red Hat Enterprise Linux Workstation 4
SRPM | |
---|---|
krb5-1.3.4-47.src.rpm | SHA-256: 324cf0ee51693525a7bf8390271da0e04f78cda89b4c71774e94e762ccb4509e |
x86_64 | |
krb5-devel-1.3.4-47.x86_64.rpm | SHA-256: d22fa09029de0c1c09dc184306003a5cbe066e6d4cb8cf449fe4462b8b498355 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.x86_64.rpm | SHA-256: abf6833bc79d82eaabff537c738d42df7751600c9f6a27b2f163b6bc4c44fd51 |
krb5-server-1.3.4-47.x86_64.rpm | SHA-256: ba7f45e9ad43de025ce8472182a6b895812f42f596a0e843af06f8221bcface1 |
krb5-workstation-1.3.4-47.x86_64.rpm | SHA-256: e1bd33f575d1ea4aa45a6ceab40cf56ddbdd2fefeac59c1f6d877c36bffc754b |
ia64 | |
krb5-devel-1.3.4-47.ia64.rpm | SHA-256: af1037380982fda753fdbc5defd2be45f5b0f2fde6e88c4b6aaffc7504f304a6 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.ia64.rpm | SHA-256: 9e846d4d348d2462e1ec865b4f3facaf730f33f3f1384dd7cd6a0df5f37cc06a |
krb5-server-1.3.4-47.ia64.rpm | SHA-256: a5ed05cf711b93e04a747d813a9e3017eb0d461db997efd9ca8b93f09872d805 |
krb5-workstation-1.3.4-47.ia64.rpm | SHA-256: 4512d8dd7a3e9e46e272c820c652d038a0ab45cbeea806ea04c51ee3cef52df2 |
i386 | |
krb5-devel-1.3.4-47.i386.rpm | SHA-256: 585058c2e24b078bc471e817eb1fbcb34a5113b59e9f2dc7604f8af0a0f1507b |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-server-1.3.4-47.i386.rpm | SHA-256: bc3688d86de32fd2287e81f99e74d26a1964c2982f75018b9840824df6de0c12 |
krb5-workstation-1.3.4-47.i386.rpm | SHA-256: f7ccbb977227d220db5328156613278d76a1089322a098b2e802516049f573de |
Red Hat Enterprise Linux Desktop 4
SRPM | |
---|---|
krb5-1.3.4-47.src.rpm | SHA-256: 324cf0ee51693525a7bf8390271da0e04f78cda89b4c71774e94e762ccb4509e |
x86_64 | |
krb5-devel-1.3.4-47.x86_64.rpm | SHA-256: d22fa09029de0c1c09dc184306003a5cbe066e6d4cb8cf449fe4462b8b498355 |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-libs-1.3.4-47.x86_64.rpm | SHA-256: abf6833bc79d82eaabff537c738d42df7751600c9f6a27b2f163b6bc4c44fd51 |
krb5-server-1.3.4-47.x86_64.rpm | SHA-256: ba7f45e9ad43de025ce8472182a6b895812f42f596a0e843af06f8221bcface1 |
krb5-workstation-1.3.4-47.x86_64.rpm | SHA-256: e1bd33f575d1ea4aa45a6ceab40cf56ddbdd2fefeac59c1f6d877c36bffc754b |
i386 | |
krb5-devel-1.3.4-47.i386.rpm | SHA-256: 585058c2e24b078bc471e817eb1fbcb34a5113b59e9f2dc7604f8af0a0f1507b |
krb5-libs-1.3.4-47.i386.rpm | SHA-256: b8b5615d6aa1849eb129be7ef63f9536c0712f42dcd910db7f02713a2b31e5a6 |
krb5-server-1.3.4-47.i386.rpm | SHA-256: bc3688d86de32fd2287e81f99e74d26a1964c2982f75018b9840824df6de0c12 |
krb5-workstation-1.3.4-47.i386.rpm | SHA-256: f7ccbb977227d220db5328156613278d76a1089322a098b2e802516049f573de |
Red Hat Enterprise Linux for IBM z Systems 4
SRPM | |
---|---|
krb5-1.3.4-47.src.rpm | SHA-256: 324cf0ee51693525a7bf8390271da0e04f78cda89b4c71774e94e762ccb4509e |
s390x | |
krb5-devel-1.3.4-47.s390x.rpm | SHA-256: c87a6529a78a98d844c9c723b870a0d31b2945a4d4534736e17521c505c8c1d5 |
krb5-libs-1.3.4-47.s390.rpm | SHA-256: a13e4777e034ae043c314ffec4d9f8cd412750bc474ecd3ac01013d880128613 |
krb5-libs-1.3.4-47.s390x.rpm | SHA-256: 4c3f944ccfe01977204a0aa1f74e5930aa64cf83187b6bbcb8942d5e6c912b55 |
krb5-server-1.3.4-47.s390x.rpm | SHA-256: eeb29c734d9eb216ae16e081b0529f6801b1195891dd204d076dbca1390fd6c6 |
krb5-workstation-1.3.4-47.s390x.rpm | SHA-256: 5582c5022d2643b6dcf9315867e5bf9f301493b9b1f8ab0c96794a0a364943cb |
s390 | |
krb5-devel-1.3.4-47.s390.rpm | SHA-256: 8164c14aae3bc7af23924dcbe6d23da0705718d6bbb599db4a5186cef1ca1774 |
krb5-libs-1.3.4-47.s390.rpm | SHA-256: a13e4777e034ae043c314ffec4d9f8cd412750bc474ecd3ac01013d880128613 |
krb5-server-1.3.4-47.s390.rpm | SHA-256: 56a6d5312d54c8f851221ae86bc52843e9680485f2a57933131ef2930762068a |
krb5-workstation-1.3.4-47.s390.rpm | SHA-256: fe0d5ef76b98ebf1b4ff3cf31e65e6415d7c4dcd5f472c4e3895e747cc89cbe4 |
Red Hat Enterprise Linux for Power, big endian 4
SRPM | |
---|---|
krb5-1.3.4-47.src.rpm | SHA-256: 324cf0ee51693525a7bf8390271da0e04f78cda89b4c71774e94e762ccb4509e |
ppc | |
krb5-devel-1.3.4-47.ppc.rpm | SHA-256: fc19caba9342a213c18ab1b47f399e1ec2576fae0e238bf5d49c06c7818071ef |
krb5-libs-1.3.4-47.ppc.rpm | SHA-256: 7526987d120f3c0d362f69291ee2969bd3270e70acc04606cbb2e83cc939bbd4 |
krb5-libs-1.3.4-47.ppc64.rpm | SHA-256: 61c5d6caef9f62c0154a925b1cd78e5759d2e3b9ebe6cc73368a566ec69531da |
krb5-server-1.3.4-47.ppc.rpm | SHA-256: 4613bdb5bf8688c6296b60b1047f8b006a7ce3604fdd16198ab3cb91ab111a23 |
krb5-workstation-1.3.4-47.ppc.rpm | SHA-256: 87c975d343e65319d41179ce0bcf302696406de32b69ac56df1470c367643534 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.