Skip to navigation

Bug Fix Advisory krb5 bug fix update

Advisory: RHBA-2008:1034-3
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2009-01-12
Last updated on: 2009-01-12
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux EUS (v. 5.2.z server)

Details

Updated krb5 packages which fix a bug are now available.

Kerberos is a network authentication system, which allows clients and
servers to authenticate to each other through the use of symmetric
encryption and a trusted third party: the Key Distribution Center (KDC).

These updated krb5 packages fix a bug that occurred when certain
applications which use Kerberos to authenticate to services had specific
requirements on which types of keys can be used for the authentication
process. When such an application attempted to narrow the set of key types
which could be obtained through a TGS request by calling the
krb5_set_default_tgs_enctypes() function, it would in many cases still
obtain credentials which used an undesirable key type.

All users of krb5 are advised to upgrade to these updated packages, which
backports the fix for this bug from the 1.6.3 release.


Solution

Before applying this update, make sure that all previously-released errata
relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
krb5-1.6.1-25.el5_2.2.src.rpm
File outdated by:  RHSA-2013:0942
    MD5: 967843a3a5501527e810b6379238b786
 
IA-32:
krb5-devel-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: 6939db839de35d6dfcd083a1d3908001
krb5-server-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: 0c1f1e93e4145c9a676dca7ff110ffeb
 
x86_64:
krb5-devel-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: 6939db839de35d6dfcd083a1d3908001
krb5-devel-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: a0c11d8cba034fed9f9e7ba14b604885
krb5-server-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: b128cf0cc55fa3d5254f772da7402758
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
krb5-1.6.1-25.el5_2.2.src.rpm
File outdated by:  RHSA-2013:0942
    MD5: 967843a3a5501527e810b6379238b786
 
IA-32:
krb5-devel-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: 6939db839de35d6dfcd083a1d3908001
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-server-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: 0c1f1e93e4145c9a676dca7ff110ffeb
krb5-workstation-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a9922769f9309372a3e69ecc3b2c9c35
 
IA-64:
krb5-devel-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 38628de7f04b0fa4429c614c78d972a8
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-libs-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 005d917ebce65c88b517db143a492174
krb5-server-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2013:0942
    MD5: b6157f947fa245966fb7050e162d2b13
krb5-workstation-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 9731c008b3de425cca76e0bce73eeed7
 
PPC:
krb5-devel-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2013:0942
    MD5: fd831c5092e2b829a2855fedb7a9eee6
krb5-devel-1.6.1-25.el5_2.2.ppc64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 6f4cfe2eb9e10688963e19e6ff2bc9a9
krb5-libs-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2013:0942
    MD5: 9b24e289a5c907bb9fd957e7b632ecad
krb5-libs-1.6.1-25.el5_2.2.ppc64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 1d1c25d2165ba7939dcef6c62c54a07e
krb5-server-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2013:0942
    MD5: aa52a45ade2c51f1707ddd4fd659c8e5
krb5-workstation-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2013:0942
    MD5: 0a933712c848e6ba363a9f2c2b4be746
 
s390x:
krb5-devel-1.6.1-25.el5_2.2.s390.rpm
File outdated by:  RHSA-2013:0942
    MD5: f8f64f4415ff46b77e9c44df17c5cc89
krb5-devel-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2013:0942
    MD5: 4da7de1564aca3b64290164ba0810534
krb5-libs-1.6.1-25.el5_2.2.s390.rpm
File outdated by:  RHSA-2013:0942
    MD5: 2a46997f6a5eb966101bd39e98f5dc41
krb5-libs-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2013:0942
    MD5: e04768307d38a5ad45cd8c8707f2ea44
krb5-server-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2013:0942
    MD5: fb747fd43d04da98302121e0685ef6e2
krb5-workstation-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2013:0942
    MD5: 0e0548ac9cf1818bf06fd10eb42afecc
 
x86_64:
krb5-devel-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: 6939db839de35d6dfcd083a1d3908001
krb5-devel-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: a0c11d8cba034fed9f9e7ba14b604885
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-libs-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: cb1ae7f797e3910c149564823059691d
krb5-server-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: b128cf0cc55fa3d5254f772da7402758
krb5-workstation-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 7deee193cd0744f503edc75c03df4197
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
krb5-1.6.1-25.el5_2.2.src.rpm
File outdated by:  RHSA-2013:0942
    MD5: 967843a3a5501527e810b6379238b786
 
IA-32:
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-workstation-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a9922769f9309372a3e69ecc3b2c9c35
 
x86_64:
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2013:0942
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-libs-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: cb1ae7f797e3910c149564823059691d
krb5-workstation-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2013:0942
    MD5: 7deee193cd0744f503edc75c03df4197
 
Red Hat Enterprise Linux EUS (v. 5.2.z server)

SRPMS:
krb5-1.6.1-25.el5_2.2.src.rpm
File outdated by:  RHSA-2013:0942
    MD5: 967843a3a5501527e810b6379238b786
 
IA-32:
krb5-devel-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: 6939db839de35d6dfcd083a1d3908001
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-server-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: 0c1f1e93e4145c9a676dca7ff110ffeb
krb5-workstation-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: a9922769f9309372a3e69ecc3b2c9c35
 
IA-64:
krb5-devel-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2010:0029
    MD5: 38628de7f04b0fa4429c614c78d972a8
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-libs-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2010:0029
    MD5: 005d917ebce65c88b517db143a492174
krb5-server-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2010:0029
    MD5: b6157f947fa245966fb7050e162d2b13
krb5-workstation-1.6.1-25.el5_2.2.ia64.rpm
File outdated by:  RHSA-2010:0029
    MD5: 9731c008b3de425cca76e0bce73eeed7
 
PPC:
krb5-devel-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2010:0029
    MD5: fd831c5092e2b829a2855fedb7a9eee6
krb5-devel-1.6.1-25.el5_2.2.ppc64.rpm
File outdated by:  RHSA-2010:0029
    MD5: 6f4cfe2eb9e10688963e19e6ff2bc9a9
krb5-libs-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2010:0029
    MD5: 9b24e289a5c907bb9fd957e7b632ecad
krb5-libs-1.6.1-25.el5_2.2.ppc64.rpm
File outdated by:  RHSA-2010:0029
    MD5: 1d1c25d2165ba7939dcef6c62c54a07e
krb5-server-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2010:0029
    MD5: aa52a45ade2c51f1707ddd4fd659c8e5
krb5-workstation-1.6.1-25.el5_2.2.ppc.rpm
File outdated by:  RHSA-2010:0029
    MD5: 0a933712c848e6ba363a9f2c2b4be746
 
s390x:
krb5-devel-1.6.1-25.el5_2.2.s390.rpm
File outdated by:  RHSA-2010:0029
    MD5: f8f64f4415ff46b77e9c44df17c5cc89
krb5-devel-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2010:0029
    MD5: 4da7de1564aca3b64290164ba0810534
krb5-libs-1.6.1-25.el5_2.2.s390.rpm
File outdated by:  RHSA-2010:0029
    MD5: 2a46997f6a5eb966101bd39e98f5dc41
krb5-libs-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2010:0029
    MD5: e04768307d38a5ad45cd8c8707f2ea44
krb5-server-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2010:0029
    MD5: fb747fd43d04da98302121e0685ef6e2
krb5-workstation-1.6.1-25.el5_2.2.s390x.rpm
File outdated by:  RHSA-2010:0029
    MD5: 0e0548ac9cf1818bf06fd10eb42afecc
 
x86_64:
krb5-devel-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: 6939db839de35d6dfcd083a1d3908001
krb5-devel-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2010:0029
    MD5: a0c11d8cba034fed9f9e7ba14b604885
krb5-libs-1.6.1-25.el5_2.2.i386.rpm
File outdated by:  RHSA-2010:0029
    MD5: a408c20b70f724b6158bc272c1fa2d2c
krb5-libs-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2010:0029
    MD5: cb1ae7f797e3910c149564823059691d
krb5-server-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2010:0029
    MD5: b128cf0cc55fa3d5254f772da7402758
krb5-workstation-1.6.1-25.el5_2.2.x86_64.rpm
File outdated by:  RHSA-2010:0029
    MD5: 7deee193cd0744f503edc75c03df4197
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

473104 - CRM #1813976 Enable Kerberos NFS authentication without decreasing general Kerberos security


Keywords

krb5, tgs


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/