- Issued:
- 2007-09-05
- Updated:
- 2007-09-05
RHBA-2007:0886 - Bug Fix Advisory
Synopsis
krb5 bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated krb5 packages, which fix an error in the receipt of forwarded
credentials in login.krb5, are now available.
Description
Kerberos is a network authentication system which uses a trusted third
party to authenticate clients and servers to each other.
When logging in to a remote system using the Kerberos-aware versions of the
rlogin or telnet servers, it is possible to forward a ticket-granting
ticket to the remote system, forwarding the associated credentials for use
by said remote system. On some architectures, when the user chose to
forward credentials, login.krb5 would erroneously mark the forwarded
credentials as invalid and discard them.
Note: this bug is not present in later versions of Red Hat Enterprise
Linux.
Anyone using Kerberos-aware rlogin and telnet services should install these
packages, which resolve this issue.
Solution
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.
This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188
Affected Products
- Red Hat Enterprise Linux Server 3 x86_64
- Red Hat Enterprise Linux Server 3 ia64
- Red Hat Enterprise Linux Server 3 i386
- Red Hat Enterprise Linux Workstation 3 x86_64
- Red Hat Enterprise Linux Workstation 3 ia64
- Red Hat Enterprise Linux Workstation 3 i386
- Red Hat Enterprise Linux Desktop 3 x86_64
- Red Hat Enterprise Linux Desktop 3 i386
- Red Hat Enterprise Linux for IBM z Systems 3 s390x
- Red Hat Enterprise Linux for IBM z Systems 3 s390
- Red Hat Enterprise Linux for Power, big endian 3 ppc
Fixes
(none)CVEs
(none)
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.