Skip to navigation

Bug Fix Advisory krb5 bugfix update

Advisory: RHBA-2011:0571-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2011-05-19
Last updated on: 2011-05-19
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Workstation (v. 6)

Details

Updated krb5 packages that fix multiple bugs are now available for Red Hat
Enterprise Linux 6.

Kerberos is a network authentication system which allows clients and servers to
authenticate to each other using symmetric encryption and a trusted third-party,
the Key Distribution Center (KDC).

Kerberos has been upgraded to version 1.9, which provides a number of bug fixes
over the previous version. (BZ#642417)

This update fixes the following bugs:

* Previously, no IPv6 suport was available for kprop, kpropd, kadmin and
kadmind. This update adds IPv6 support to these utilities. (BZ#595841,
BZ#595842)

* Previously, the krbPwdExpiration attribute in the principal's entry would
often be ignored when the realm database was stored in a directory server. This
update fixes this problem and this attribute is no longer ignored. (BZ#627039)

* Previously, kinit with smart card login did not authenticate to the KDC
correctly if the certificate on the smart card did not contain a subjectAltName
extension or multiple certificates were available and krb5.conf was configured
to select according to the value of the keyUsage extension in the certificates.
This update continues to look for certificates with the right extension and
corrects the valuation. (BZ#629022)

* Previously, the init script for the kpropd was not Linux Standards Base (LSB)
compliant. With this update, this init script is LSB compliant. (BZ#630587)

* Previously, the KDC log files were not rotated by default. This update
corrects this problem. Now these log files are rotated correctly. (BZ#630968)

* Previously, logins failed if the user had a .k5login file which did not
explicitly contain the user's principal name. With this update, this check can
be disabled using the "k5login_authoritative" setting in krb5.conf. (BZ#646499)

* Previously, GSSAPI authentication from Windows clients using cross-realm
authentication failed if the client's ticket included a Privilege Attribute
Certificate (PAC) with a failed signature check. Failed signature checks are now
ignored. (BZ#679612)

All krb5 users are advised to upgrade to these updated packages, which fix these
bugs.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259/

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
krb5-1.9-9.el6.src.rpm
File outdated by:  RHBA-2014:0359
    MD5: a519567257881195b4253c723a6dc48b
SHA-256: a36e3ba259b73e44e0ddfac0c4a77aa807d61562b3a0c59bfc0d889413eda96b
 
IA-32:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-pkinit-openssl-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 1b6f98e8586e3972351822c252ffdb44
SHA-256: 158d9af3bbbd51ceb5ce6785c9936c35d52f2a73101195149cc44ca4e5e12041
krb5-server-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 5c2937e824940ee76ce08ae2c4038398
SHA-256: 67b47a906c7c29de7818cbc6d7be016c190d2d633d49480ac5ac9b5b7b5d9d14
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-workstation-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 52a1ffc4273bd1eae7bdbc0f99409c5a
SHA-256: 4f452ea75bf85c01def9df8abec11ed4df543404817ace0e622048ab12ff3063
 
x86_64:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-debuginfo-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 10b425eddc699eacf8baeb4bcb097674
SHA-256: d9b7f1e967235bca28d34731eefea9fc3f77849eee85934148e62899495a1656
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-devel-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: e6af075db1fd8eca528579d1b934abd0
SHA-256: 277a03d71bf9ad5e5cf36b06a936e2da1f7633de1356f78f09f51a49ae9dbd58
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-libs-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 523c4a7828952865902eb181eb6f1a35
SHA-256: 60dd194394252dc5c5eb906083a12ea01adc9f92236f30db16704e14e453d2e7
krb5-pkinit-openssl-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 4fbbef8d8d950146df86e298a658c250
SHA-256: 775ad296250121a01bf284d1a1d7f3d6afc5d528be242c011ccbf424058084bd
krb5-server-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: c336a7f39ef93b9828d23afaff944bda
SHA-256: ae7fd855b7c3c1972a5d3f16fcb507e9e851eb60bc73b5d501cbcdaaf736c7dc
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-server-ldap-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 64f0521c365ea34e973318e2624a025b
SHA-256: 1692e4ef8e266db8db3b7b436eeefee2b08d3d9030e2e863aaf32a8a3e42fe1a
krb5-workstation-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 058de0e95edc9806373a0915b5d100ed
SHA-256: 5d97007dd2343ccc590bc1f70d546352b0d3bf15f2e544055da64a6e58524243
 
Red Hat Enterprise Linux HPC Node (v. 6)

SRPMS:
krb5-1.9-9.el6.src.rpm
File outdated by:  RHBA-2014:0359
    MD5: a519567257881195b4253c723a6dc48b
SHA-256: a36e3ba259b73e44e0ddfac0c4a77aa807d61562b3a0c59bfc0d889413eda96b
 
x86_64:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-debuginfo-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 10b425eddc699eacf8baeb4bcb097674
SHA-256: d9b7f1e967235bca28d34731eefea9fc3f77849eee85934148e62899495a1656
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-devel-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: e6af075db1fd8eca528579d1b934abd0
SHA-256: 277a03d71bf9ad5e5cf36b06a936e2da1f7633de1356f78f09f51a49ae9dbd58
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-libs-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 523c4a7828952865902eb181eb6f1a35
SHA-256: 60dd194394252dc5c5eb906083a12ea01adc9f92236f30db16704e14e453d2e7
krb5-pkinit-openssl-1.9-9.el6.x86_64.rpm
File outdated by:  RHSA-2011:1379
    MD5: 4fbbef8d8d950146df86e298a658c250
SHA-256: 775ad296250121a01bf284d1a1d7f3d6afc5d528be242c011ccbf424058084bd
krb5-server-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: c336a7f39ef93b9828d23afaff944bda
SHA-256: ae7fd855b7c3c1972a5d3f16fcb507e9e851eb60bc73b5d501cbcdaaf736c7dc
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-server-ldap-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 64f0521c365ea34e973318e2624a025b
SHA-256: 1692e4ef8e266db8db3b7b436eeefee2b08d3d9030e2e863aaf32a8a3e42fe1a
krb5-workstation-1.9-9.el6.x86_64.rpm
File outdated by:  RHSA-2011:1379
    MD5: 058de0e95edc9806373a0915b5d100ed
SHA-256: 5d97007dd2343ccc590bc1f70d546352b0d3bf15f2e544055da64a6e58524243
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
krb5-1.9-9.el6.src.rpm
File outdated by:  RHBA-2014:0359
    MD5: a519567257881195b4253c723a6dc48b
SHA-256: a36e3ba259b73e44e0ddfac0c4a77aa807d61562b3a0c59bfc0d889413eda96b
 
IA-32:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-pkinit-openssl-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 1b6f98e8586e3972351822c252ffdb44
SHA-256: 158d9af3bbbd51ceb5ce6785c9936c35d52f2a73101195149cc44ca4e5e12041
krb5-server-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 5c2937e824940ee76ce08ae2c4038398
SHA-256: 67b47a906c7c29de7818cbc6d7be016c190d2d633d49480ac5ac9b5b7b5d9d14
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-workstation-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 52a1ffc4273bd1eae7bdbc0f99409c5a
SHA-256: 4f452ea75bf85c01def9df8abec11ed4df543404817ace0e622048ab12ff3063
 
PPC:
krb5-debuginfo-1.9-9.el6.ppc.rpm
File outdated by:  RHBA-2014:0359
    MD5: fb50200a871c77d17ea1c0c363d5f083
SHA-256: 11d236d45afc92f4a11d50a06e62a636743375101b993e62c2ab9f4d9575a0ed
krb5-debuginfo-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: b253ffa255d8bc28d62e521968e56f4a
SHA-256: e554aef587959ea74d55f97e149c9fc15e2ff1630a65a021a94bbd3b462e97ec
krb5-devel-1.9-9.el6.ppc.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8da38600edd1a4c9b119b51c7adcadb5
SHA-256: 8c18dcbc706d2684a7af9245cd16a91f3eceee94e07e9e3f3c1b09f7c89d61ea
krb5-devel-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 85628bafa863e68147dc634036a20502
SHA-256: c4dd0bb6c9b80c2f8e3326f5799bceab271489fb49019aedb7357f3bea04703c
krb5-libs-1.9-9.el6.ppc.rpm
File outdated by:  RHBA-2014:0359
    MD5: 65442e4e18306b75ef09575d283d0bc2
SHA-256: 469e554faf29534d74636f69155b2874527ca013ad725c0c3bf4015a34c5c2a7
krb5-libs-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 9524f36bd4d91b92ef49e4b511ec740b
SHA-256: aa7bb298388d64926378c59e3390713a8a7a3d51ad65a44dabe60118582147f3
krb5-pkinit-openssl-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: d38de824c306b3442e3cf700bc919825
SHA-256: 5ef0e2c179b721eb997e95a4927a87ec770f424b05748ef36451ee018ee3468f
krb5-server-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: df39f3692f1d6f2d82fff89e067c2030
SHA-256: 59cd6b9858487e09d69f90718806ab0eb940b50fab76e38b6ce24b812dd79ac0
krb5-server-ldap-1.9-9.el6.ppc.rpm
File outdated by:  RHBA-2014:0359
    MD5: 664e25c33540eac867267c341c16cdf0
SHA-256: 7357f3cff38ad842602d480176d2e4593c874255cbdb54e3c8fee2faf6f2e627
krb5-server-ldap-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 124d4f6458b170b79c0ebc8c09ac9b77
SHA-256: bd5e8bf493859c097be0763feda45cbda04cfb8ce67c46f75e3e454c4049449c
krb5-workstation-1.9-9.el6.ppc64.rpm
File outdated by:  RHBA-2014:0359
    MD5: a5899111680e76a6ebd29f4b142ef5e9
SHA-256: 6bc906574376fc1d51eedd998326ac13bc8fb76a4a8c34abc14e0403dc461977
 
s390x:
krb5-debuginfo-1.9-9.el6.s390.rpm
File outdated by:  RHBA-2014:0359
    MD5: bfaa26af75de92c36a6fe737ce19ac45
SHA-256: 518cb655f0adf5cbfb3cc35ca67e80d8a246405104c91ad1ae5008704b7610d5
krb5-debuginfo-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: ef8d03f56931ea9479f92e154afcdd28
SHA-256: a907277feac5694282abd2aeea756033326f26237c6f102e7665c7c5daf92db4
krb5-devel-1.9-9.el6.s390.rpm
File outdated by:  RHBA-2014:0359
    MD5: 77071220787a7296dacc7f69e0edbcfa
SHA-256: 9a59cf7bf3bb2a1e4428e149ad0704a79206999dd6e681e059d56569f98e3169
krb5-devel-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: 3b111fda6e0b7cd148c63e0c3a359d9f
SHA-256: 0c0007b96526f1d5c22021467e211feccde23a6e8726c5539e9bb12752f179b7
krb5-libs-1.9-9.el6.s390.rpm
File outdated by:  RHBA-2014:0359
    MD5: ede54a43cd752eedcb58b74036b6454f
SHA-256: abce76d60b8a1f7af50843104afec3475a2df6f3eb327e3b4c7bd878cfb5c364
krb5-libs-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: 7b6fa98864fb831ae35a514a52340696
SHA-256: 05bc5de6e951281f455c5a8b08bbba6176cbe718fd52b3f799f6e848e3e306f4
krb5-pkinit-openssl-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: 95a2b3b4d307e201219f596a4d953384
SHA-256: b93ad25482c8b51d7214cd7fd692afad7fad9872f61b5b89b0f2bb7bf2e139b1
krb5-server-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: ecb9ac111410dc32e78cf2e0bd0b1ca9
SHA-256: e1ba1106f4e6bfc98e8cd5a5fff279cbeefce3bafd4b9bf047959b90974906f2
krb5-server-ldap-1.9-9.el6.s390.rpm
File outdated by:  RHBA-2014:0359
    MD5: 97263d0eb7b7290a2524f5b789c4e89f
SHA-256: 77951ec09ad68d394325d210344d6c1d1b786653e0302c83195912c51bf3ec1a
krb5-server-ldap-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: a67e923da654669b4ac3703d451784db
SHA-256: ded5af179caa3b525e5922aba344d6cbb99a0ee4d11618c4a9b751e85262e99a
krb5-workstation-1.9-9.el6.s390x.rpm
File outdated by:  RHBA-2014:0359
    MD5: cf5f9fc9b58a54247b5730197a362521
SHA-256: b1189930f7b82271fab2252fe0366b7fda871906aef8cb53d0ec149a7042d444
 
x86_64:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-debuginfo-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 10b425eddc699eacf8baeb4bcb097674
SHA-256: d9b7f1e967235bca28d34731eefea9fc3f77849eee85934148e62899495a1656
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-devel-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: e6af075db1fd8eca528579d1b934abd0
SHA-256: 277a03d71bf9ad5e5cf36b06a936e2da1f7633de1356f78f09f51a49ae9dbd58
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-libs-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 523c4a7828952865902eb181eb6f1a35
SHA-256: 60dd194394252dc5c5eb906083a12ea01adc9f92236f30db16704e14e453d2e7
krb5-pkinit-openssl-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 4fbbef8d8d950146df86e298a658c250
SHA-256: 775ad296250121a01bf284d1a1d7f3d6afc5d528be242c011ccbf424058084bd
krb5-server-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: c336a7f39ef93b9828d23afaff944bda
SHA-256: ae7fd855b7c3c1972a5d3f16fcb507e9e851eb60bc73b5d501cbcdaaf736c7dc
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-server-ldap-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 64f0521c365ea34e973318e2624a025b
SHA-256: 1692e4ef8e266db8db3b7b436eeefee2b08d3d9030e2e863aaf32a8a3e42fe1a
krb5-workstation-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 058de0e95edc9806373a0915b5d100ed
SHA-256: 5d97007dd2343ccc590bc1f70d546352b0d3bf15f2e544055da64a6e58524243
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
krb5-1.9-9.el6.src.rpm
File outdated by:  RHBA-2014:0359
    MD5: a519567257881195b4253c723a6dc48b
SHA-256: a36e3ba259b73e44e0ddfac0c4a77aa807d61562b3a0c59bfc0d889413eda96b
 
IA-32:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-pkinit-openssl-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 1b6f98e8586e3972351822c252ffdb44
SHA-256: 158d9af3bbbd51ceb5ce6785c9936c35d52f2a73101195149cc44ca4e5e12041
krb5-server-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 5c2937e824940ee76ce08ae2c4038398
SHA-256: 67b47a906c7c29de7818cbc6d7be016c190d2d633d49480ac5ac9b5b7b5d9d14
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-workstation-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 52a1ffc4273bd1eae7bdbc0f99409c5a
SHA-256: 4f452ea75bf85c01def9df8abec11ed4df543404817ace0e622048ab12ff3063
 
x86_64:
krb5-debuginfo-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: beb5152a44b4fd4837d8d3736dd251a7
SHA-256: 9f22d7d87c2d14fc340fbb0c3f5f9512fbad49db67bc6c7a82a80d718775af73
krb5-debuginfo-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 10b425eddc699eacf8baeb4bcb097674
SHA-256: d9b7f1e967235bca28d34731eefea9fc3f77849eee85934148e62899495a1656
krb5-devel-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: dffa83ec52a0081472e5e75b1e62a527
SHA-256: 188d8a9871feaf24f3c8fce2eb49c1000a64ab583354070bf25e5120b68d1b38
krb5-devel-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: e6af075db1fd8eca528579d1b934abd0
SHA-256: 277a03d71bf9ad5e5cf36b06a936e2da1f7633de1356f78f09f51a49ae9dbd58
krb5-libs-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: 8b3dafc5501764dde0fe39fea9f23a79
SHA-256: c32d79ceaff39ff7d3125caad80f69643602ba3f4303d5f41c6fd655db91a657
krb5-libs-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 523c4a7828952865902eb181eb6f1a35
SHA-256: 60dd194394252dc5c5eb906083a12ea01adc9f92236f30db16704e14e453d2e7
krb5-pkinit-openssl-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 4fbbef8d8d950146df86e298a658c250
SHA-256: 775ad296250121a01bf284d1a1d7f3d6afc5d528be242c011ccbf424058084bd
krb5-server-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: c336a7f39ef93b9828d23afaff944bda
SHA-256: ae7fd855b7c3c1972a5d3f16fcb507e9e851eb60bc73b5d501cbcdaaf736c7dc
krb5-server-ldap-1.9-9.el6.i686.rpm
File outdated by:  RHBA-2014:0359
    MD5: fad599f567d2bccb6acf45f3b06a6cdf
SHA-256: 6dd74cf36e429aceda67413074b53994660e0873d979f85649819202f5221a33
krb5-server-ldap-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 64f0521c365ea34e973318e2624a025b
SHA-256: 1692e4ef8e266db8db3b7b436eeefee2b08d3d9030e2e863aaf32a8a3e42fe1a
krb5-workstation-1.9-9.el6.x86_64.rpm
File outdated by:  RHBA-2014:0359
    MD5: 058de0e95edc9806373a0915b5d100ed
SHA-256: 5d97007dd2343ccc590bc1f70d546352b0d3bf15f2e544055da64a6e58524243
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

595841 - krb5's kprop/kpropd needs to support IPv6 connections
595842 - krb5's libgssrpc/kadmin/kadmind needs to support IPv6 connections
627039 - Incorrect handling of password expiration
629022 - 'kinit' with smart card login fails to authenticate to the kdc using the cert and its private key.
630968 - Kerberos server log does not get rotated
636985 - A KDC which offers PKINIT preauthentication may not accept requests from a RHEL 5 client
642417 - Rebase Kerberos to 1.9
646499 - pam_krb5 requires self principal to be listed in .k5login



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/