- Issued:
- 2006-03-07
- Updated:
- 2006-03-07
RHEA-2006:0079 - Product Enhancement Advisory
Synopsis
krb5 enhancement update
Type/Severity
Product Enhancement Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated krb5-workstation packages which reduce potential stalls in the
rsh client and server and correctly handle login passwords more than eight
characters long are now available.
Description
Kerberos 5 is a networked authentication system in which clients and
servers authenticate to each other using symmetric keys and a trusted third
party.
The krb5-workstation package contains modified versions of the standard rsh
and telnet clients and servers which make use of Kerberos for
authentication and which optionally provide encryption of data which is
sent over the network.
In situations where the rsh client and server are both attempting to send
large amounts of data over the network at the same time, it is possible for
both processes to block while waiting for the other to receive data.
When falling back to password-based authentication, login would incorrectly
compute the hash of a user's password if it was more than eight characters
long and deny access.
The ksu application was previously installed without the setuid bit set.
Users are advised to upgrade to these updated packages, which incorporate
changes which should reduce the likelihood of these occurrences.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
Fixes
- BZ - 174782 - Telnet Daemon provided by krb5-workstation does not process logins with passwords longer then 8 Characters
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 4
SRPM | |
---|---|
krb5-1.3.4-27.src.rpm | SHA-256: 292b9beed41dc947e0c939acf9e4c93f119cacedc0b8be94722e14c9eb6ccd46 |
x86_64 | |
krb5-devel-1.3.4-27.x86_64.rpm | SHA-256: 34749bfac4c1c50d1b843c95a3ee38342733c5b18aa09a46404adbaafa159205 |
krb5-devel-1.3.4-27.x86_64.rpm | SHA-256: 34749bfac4c1c50d1b843c95a3ee38342733c5b18aa09a46404adbaafa159205 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.x86_64.rpm | SHA-256: e5d7f379910d9a54333c451139f4e0cf427dd4b2196150215841ee758e0438e8 |
krb5-libs-1.3.4-27.x86_64.rpm | SHA-256: e5d7f379910d9a54333c451139f4e0cf427dd4b2196150215841ee758e0438e8 |
krb5-server-1.3.4-27.x86_64.rpm | SHA-256: 3dc2e24e25ca83af6d17972e8dde36ab80cedd7c5a09f624e1708e2f4f4eb440 |
krb5-server-1.3.4-27.x86_64.rpm | SHA-256: 3dc2e24e25ca83af6d17972e8dde36ab80cedd7c5a09f624e1708e2f4f4eb440 |
krb5-workstation-1.3.4-27.x86_64.rpm | SHA-256: 21a0a8f472f2ae0681b34436cb17cd9cd977ff44b15e8baf184005e4840b1142 |
krb5-workstation-1.3.4-27.x86_64.rpm | SHA-256: 21a0a8f472f2ae0681b34436cb17cd9cd977ff44b15e8baf184005e4840b1142 |
ia64 | |
krb5-devel-1.3.4-27.ia64.rpm | SHA-256: 3a0503ba0cee5aeaf90ae56d56f48afe799f87415bb90b2e177f9d820fa17b46 |
krb5-devel-1.3.4-27.ia64.rpm | SHA-256: 3a0503ba0cee5aeaf90ae56d56f48afe799f87415bb90b2e177f9d820fa17b46 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.ia64.rpm | SHA-256: 729124f6b2a1fe04e747122bba6ddecc3b96833b5156072dccdadf96bf8654a7 |
krb5-libs-1.3.4-27.ia64.rpm | SHA-256: 729124f6b2a1fe04e747122bba6ddecc3b96833b5156072dccdadf96bf8654a7 |
krb5-server-1.3.4-27.ia64.rpm | SHA-256: f714690e599f034321408fe98403912f8b3f69329e9ad5ceb5322f638a767927 |
krb5-server-1.3.4-27.ia64.rpm | SHA-256: f714690e599f034321408fe98403912f8b3f69329e9ad5ceb5322f638a767927 |
krb5-workstation-1.3.4-27.ia64.rpm | SHA-256: d766ddd33da7d0f0fd1767d44497ddc6f882ec64771fe37667d0df1fe3ab1b41 |
krb5-workstation-1.3.4-27.ia64.rpm | SHA-256: d766ddd33da7d0f0fd1767d44497ddc6f882ec64771fe37667d0df1fe3ab1b41 |
i386 | |
krb5-devel-1.3.4-27.i386.rpm | SHA-256: c040dba31e30a40141db7c5ddfb76b5d0c8cc548602321eb89f5113a232f5ff6 |
krb5-devel-1.3.4-27.i386.rpm | SHA-256: c040dba31e30a40141db7c5ddfb76b5d0c8cc548602321eb89f5113a232f5ff6 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-server-1.3.4-27.i386.rpm | SHA-256: 88ffa561e512898320500735b3d538e1e2ffa4365cd7175971366f93f7d65aae |
krb5-server-1.3.4-27.i386.rpm | SHA-256: 88ffa561e512898320500735b3d538e1e2ffa4365cd7175971366f93f7d65aae |
krb5-workstation-1.3.4-27.i386.rpm | SHA-256: 24e708a93d4f4dbfc4c0285a465cd38235aad204f74659b6abd4bb44c372e81a |
krb5-workstation-1.3.4-27.i386.rpm | SHA-256: 24e708a93d4f4dbfc4c0285a465cd38235aad204f74659b6abd4bb44c372e81a |
Red Hat Enterprise Linux Workstation 4
SRPM | |
---|---|
krb5-1.3.4-27.src.rpm | SHA-256: 292b9beed41dc947e0c939acf9e4c93f119cacedc0b8be94722e14c9eb6ccd46 |
x86_64 | |
krb5-devel-1.3.4-27.x86_64.rpm | SHA-256: 34749bfac4c1c50d1b843c95a3ee38342733c5b18aa09a46404adbaafa159205 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.x86_64.rpm | SHA-256: e5d7f379910d9a54333c451139f4e0cf427dd4b2196150215841ee758e0438e8 |
krb5-server-1.3.4-27.x86_64.rpm | SHA-256: 3dc2e24e25ca83af6d17972e8dde36ab80cedd7c5a09f624e1708e2f4f4eb440 |
krb5-workstation-1.3.4-27.x86_64.rpm | SHA-256: 21a0a8f472f2ae0681b34436cb17cd9cd977ff44b15e8baf184005e4840b1142 |
ia64 | |
krb5-devel-1.3.4-27.ia64.rpm | SHA-256: 3a0503ba0cee5aeaf90ae56d56f48afe799f87415bb90b2e177f9d820fa17b46 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.ia64.rpm | SHA-256: 729124f6b2a1fe04e747122bba6ddecc3b96833b5156072dccdadf96bf8654a7 |
krb5-server-1.3.4-27.ia64.rpm | SHA-256: f714690e599f034321408fe98403912f8b3f69329e9ad5ceb5322f638a767927 |
krb5-workstation-1.3.4-27.ia64.rpm | SHA-256: d766ddd33da7d0f0fd1767d44497ddc6f882ec64771fe37667d0df1fe3ab1b41 |
i386 | |
krb5-devel-1.3.4-27.i386.rpm | SHA-256: c040dba31e30a40141db7c5ddfb76b5d0c8cc548602321eb89f5113a232f5ff6 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-server-1.3.4-27.i386.rpm | SHA-256: 88ffa561e512898320500735b3d538e1e2ffa4365cd7175971366f93f7d65aae |
krb5-workstation-1.3.4-27.i386.rpm | SHA-256: 24e708a93d4f4dbfc4c0285a465cd38235aad204f74659b6abd4bb44c372e81a |
Red Hat Enterprise Linux Desktop 4
SRPM | |
---|---|
krb5-1.3.4-27.src.rpm | SHA-256: 292b9beed41dc947e0c939acf9e4c93f119cacedc0b8be94722e14c9eb6ccd46 |
x86_64 | |
krb5-devel-1.3.4-27.x86_64.rpm | SHA-256: 34749bfac4c1c50d1b843c95a3ee38342733c5b18aa09a46404adbaafa159205 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-libs-1.3.4-27.x86_64.rpm | SHA-256: e5d7f379910d9a54333c451139f4e0cf427dd4b2196150215841ee758e0438e8 |
krb5-server-1.3.4-27.x86_64.rpm | SHA-256: 3dc2e24e25ca83af6d17972e8dde36ab80cedd7c5a09f624e1708e2f4f4eb440 |
krb5-workstation-1.3.4-27.x86_64.rpm | SHA-256: 21a0a8f472f2ae0681b34436cb17cd9cd977ff44b15e8baf184005e4840b1142 |
i386 | |
krb5-devel-1.3.4-27.i386.rpm | SHA-256: c040dba31e30a40141db7c5ddfb76b5d0c8cc548602321eb89f5113a232f5ff6 |
krb5-libs-1.3.4-27.i386.rpm | SHA-256: 9ab901551d44df462f0657fa80f6d55a8b97b547669bb747a6e9d38f909e0efa |
krb5-server-1.3.4-27.i386.rpm | SHA-256: 88ffa561e512898320500735b3d538e1e2ffa4365cd7175971366f93f7d65aae |
krb5-workstation-1.3.4-27.i386.rpm | SHA-256: 24e708a93d4f4dbfc4c0285a465cd38235aad204f74659b6abd4bb44c372e81a |
Red Hat Enterprise Linux for IBM z Systems 4
SRPM | |
---|---|
krb5-1.3.4-27.src.rpm | SHA-256: 292b9beed41dc947e0c939acf9e4c93f119cacedc0b8be94722e14c9eb6ccd46 |
s390x | |
krb5-devel-1.3.4-27.s390x.rpm | SHA-256: 238429d9d76bb00a7303cdc1070ecbfebef37b5a447f0636b209c2e14e437333 |
krb5-libs-1.3.4-27.s390.rpm | SHA-256: 7e14be1fee99b9d6ce668d1134d5248cce2979373f09ee9b05d22aa3446d04d9 |
krb5-libs-1.3.4-27.s390x.rpm | SHA-256: d1934cf4f07ea4f305b0c608b93f712aced7340a292e664122b9cb4d3a1ae2ef |
krb5-server-1.3.4-27.s390x.rpm | SHA-256: 46438eff133dc61d664aae22d76c9732e8968e3cd66abbc4b6ce88832f8076b4 |
krb5-workstation-1.3.4-27.s390x.rpm | SHA-256: 7dbeb9c32ffdb9f4c592c75bed2157c5f4983c999434fe649478b920cf83627e |
s390 | |
krb5-devel-1.3.4-27.s390.rpm | SHA-256: 7c3431b89ca287c77dfa21773c477ffd11f4030952ecb3971a36fe2cbb41382d |
krb5-libs-1.3.4-27.s390.rpm | SHA-256: 7e14be1fee99b9d6ce668d1134d5248cce2979373f09ee9b05d22aa3446d04d9 |
krb5-server-1.3.4-27.s390.rpm | SHA-256: b33d9040225f6310b682c17ce4c51989a07ba2f25083ed431fe2d8e7b6901104 |
krb5-workstation-1.3.4-27.s390.rpm | SHA-256: 1fc2104ece4dbcba9c08df036a78f49efbe84dee101cf0e7d51f082802a16764 |
Red Hat Enterprise Linux for Power, big endian 4
SRPM | |
---|---|
krb5-1.3.4-27.src.rpm | SHA-256: 292b9beed41dc947e0c939acf9e4c93f119cacedc0b8be94722e14c9eb6ccd46 |
ppc | |
krb5-devel-1.3.4-27.ppc.rpm | SHA-256: 75cebc2505672cd6caad1a599a0531db16b05bd6ef6b6323ec4020058d1b4feb |
krb5-libs-1.3.4-27.ppc.rpm | SHA-256: 8cab4a937f8037eece6f43da5f1479d2f896a9d67f30e5bfdb6db6157316333d |
krb5-libs-1.3.4-27.ppc64.rpm | SHA-256: d0752afa6845263712f4d61c2cbfb5c6d43c4069c5a23904a2256c97cd01dbff |
krb5-server-1.3.4-27.ppc.rpm | SHA-256: e763b6909a27b03fd65e0677a4afa9f3a928ce7bf4af82c4accfa27287a33386 |
krb5-workstation-1.3.4-27.ppc.rpm | SHA-256: b19e960d14ff2709259d7e478d43e853bb22642c85fd95082afabc6a37d177d8 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.