Bug Fix Advisory pam_krb5 bug fix update

Advisory: RHBA-2007:0434-2
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2007-06-11
Last updated on: 2007-06-11
Affected Products: Red Hat Desktop (v. 3)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux WS (v. 3)
OVAL: N/A

Details

An updated pam_krb5 package is now available.

The pam_krb5 package contains a pluggable authentication module which
allows PAM-aware applications to use Kerberos 5 to verify a user's password
and to obtain and manage Kerberos credentials associated with a user
session.

This update applies the following fixes:

* When changing a user's password, the module did not inform the user if
the password server signaled that an error had occurred (in most cases,
that it denied the request). This issue is addressed by this update.

* A number of memory leaks in the pam_krb5 module have been fixed.

Users are advised to upgrade to this updated package, which applies these
fixes.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Desktop (v. 3)
SRPMS:
pam_krb5-1.79-1.src.rpm
File outdated by:  RHBA-2008:0813		     eb6881a55c2569feb89bee8835249608
 
IA-32:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
 
x86_64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.x86_64.rpm
File outdated by:  RHBA-2008:0813		     96a624db373d62f7d7e9406dd40ecdba
 
Red Hat Enterprise Linux AS (v. 3)
SRPMS:
pam_krb5-1.79-1.src.rpm
File outdated by:  RHBA-2008:0813		     eb6881a55c2569feb89bee8835249608
 
IA-32:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
 
IA-64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.ia64.rpm
File outdated by:  RHBA-2008:0813		     f9731e543aae462b8ce641585a232945
 
PPC:
pam_krb5-1.79-1.ppc.rpm
File outdated by:  RHBA-2008:0813		     f5bd58e1f3b984e3a165ec35007d02d5
pam_krb5-1.79-1.ppc64.rpm
File outdated by:  RHBA-2008:0813		     11775e3383f70451fd239f60c7b4cc6b
 
s390:
pam_krb5-1.79-1.s390.rpm
File outdated by:  RHBA-2008:0813		     e2baee9c704dbf498ab72907652f9637
 
s390x:
pam_krb5-1.79-1.s390.rpm
File outdated by:  RHBA-2008:0813		     e2baee9c704dbf498ab72907652f9637
pam_krb5-1.79-1.s390x.rpm
File outdated by:  RHBA-2008:0813		     54295cbdc689ef5b2f5fd70a3f158bcf
 
x86_64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.x86_64.rpm
File outdated by:  RHBA-2008:0813		     96a624db373d62f7d7e9406dd40ecdba
 
Red Hat Enterprise Linux ES (v. 3)
SRPMS:
pam_krb5-1.79-1.src.rpm
File outdated by:  RHBA-2008:0813		     eb6881a55c2569feb89bee8835249608
 
IA-32:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
 
IA-64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.ia64.rpm
File outdated by:  RHBA-2008:0813		     f9731e543aae462b8ce641585a232945
 
x86_64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.x86_64.rpm
File outdated by:  RHBA-2008:0813		     96a624db373d62f7d7e9406dd40ecdba
 
Red Hat Enterprise Linux WS (v. 3)
SRPMS:
pam_krb5-1.79-1.src.rpm
File outdated by:  RHBA-2008:0813		     eb6881a55c2569feb89bee8835249608
 
IA-32:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
 
IA-64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.ia64.rpm
File outdated by:  RHBA-2008:0813		     f9731e543aae462b8ce641585a232945
 
x86_64:
pam_krb5-1.79-1.i386.rpm
File outdated by:  RHBA-2008:0813		     fbe64ffc6635b79299bbfd4e113c56be
pam_krb5-1.79-1.x86_64.rpm
File outdated by:  RHBA-2008:0813		     96a624db373d62f7d7e9406dd40ecdba
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

191231 - pam_krb5 does not report KDC password rejection


Keywords

account, memory, password, preauth

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/