- Issued:
- 2012-02-20
- Updated:
- 2012-02-20
RHBA-2012:0246 - Bug Fix Advisory
Synopsis
pam_krb5 bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated pam_krb5 package that fixes a bug is now available for Red Hat
Enterprise Linux 5.
Description
The pam_krb5 package allows PAM-aware applications to check user passwords with
the help of a Kerberos KDC.
This updated pam_krb5 package fixes the following bug:
- Previously, if a system was configured to perform Kerberos authentication
using PKINIT, users who attempted to change their passwords using the "passwd"
command or other PAM-aware application, while a smart card was inserted, would
be erroneously prompted for the smart card PIN. With this update, the plugin
returns an error to any requests for non-password information while attempting
to obtain password-changing credentials. As a result, the unnecessary request
for the smart card PIN is no longer made to the user in the scenario described.
(BZ#715073)
All users of pam_krb5 are advised to upgrade to this updated package, which
fixes this bug.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 5 x86_64
- Red Hat Enterprise Linux Server 5 ia64
- Red Hat Enterprise Linux Server 5 i386
- Red Hat Enterprise Linux Workstation 5 x86_64
- Red Hat Enterprise Linux Workstation 5 i386
- Red Hat Enterprise Linux Desktop 5 x86_64
- Red Hat Enterprise Linux Desktop 5 i386
- Red Hat Enterprise Linux for IBM z Systems 5 s390x
- Red Hat Enterprise Linux for Power, big endian 5 ppc
- Red Hat Enterprise Linux Server from RHUI 5 x86_64
- Red Hat Enterprise Linux Server from RHUI 5 i386
Fixes
- BZ - 715073 - Smart card login with Kerberos credential: passwd command to change the kerberos password request smart card pin.
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 5
SRPM | |
---|---|
pam_krb5-2.2.14-22.el5.src.rpm | SHA-256: 51155a4fe5d4c98e81e66a32c572f798ed50d8b2dbdaeb1aa29e50ea363664b5 |
x86_64 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
pam_krb5-2.2.14-22.el5.x86_64.rpm | SHA-256: 3b883f06e447d932a6bc5dcd71492731b0e850cb20d588d17ae748d8625274a0 |
ia64 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
pam_krb5-2.2.14-22.el5.ia64.rpm | SHA-256: 1be52d63d0d582f928e4f4ceebc04747a96a4b4abc8c86c95307d34210bed8c2 |
i386 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
Red Hat Enterprise Linux Workstation 5
SRPM | |
---|---|
pam_krb5-2.2.14-22.el5.src.rpm | SHA-256: 51155a4fe5d4c98e81e66a32c572f798ed50d8b2dbdaeb1aa29e50ea363664b5 |
x86_64 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
pam_krb5-2.2.14-22.el5.x86_64.rpm | SHA-256: 3b883f06e447d932a6bc5dcd71492731b0e850cb20d588d17ae748d8625274a0 |
i386 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
Red Hat Enterprise Linux Desktop 5
SRPM | |
---|---|
pam_krb5-2.2.14-22.el5.src.rpm | SHA-256: 51155a4fe5d4c98e81e66a32c572f798ed50d8b2dbdaeb1aa29e50ea363664b5 |
x86_64 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
pam_krb5-2.2.14-22.el5.x86_64.rpm | SHA-256: 3b883f06e447d932a6bc5dcd71492731b0e850cb20d588d17ae748d8625274a0 |
i386 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
Red Hat Enterprise Linux for IBM z Systems 5
SRPM | |
---|---|
pam_krb5-2.2.14-22.el5.src.rpm | SHA-256: 51155a4fe5d4c98e81e66a32c572f798ed50d8b2dbdaeb1aa29e50ea363664b5 |
s390x | |
pam_krb5-2.2.14-22.el5.s390.rpm | SHA-256: 217a876f94c6890be8072b283ade7cab364000650a96a89d589efc28185e8388 |
pam_krb5-2.2.14-22.el5.s390x.rpm | SHA-256: b7c5e73f3c74f73c2ee5ef84c5fb4ee910d84a3dc328958700a44cb4ba3f75a6 |
Red Hat Enterprise Linux for Power, big endian 5
SRPM | |
---|---|
pam_krb5-2.2.14-22.el5.src.rpm | SHA-256: 51155a4fe5d4c98e81e66a32c572f798ed50d8b2dbdaeb1aa29e50ea363664b5 |
ppc | |
pam_krb5-2.2.14-22.el5.ppc.rpm | SHA-256: 39610a63c41c7c536c5e16b84e5ed33e6a002067fec564240fb57f1d95f6a847 |
pam_krb5-2.2.14-22.el5.ppc64.rpm | SHA-256: ef30565d8f2f91b4e7c84d5a72c4f0aa24eaa2cd276a841705d27e4180a9415f |
Red Hat Enterprise Linux Server from RHUI 5
SRPM | |
---|---|
pam_krb5-2.2.14-22.el5.src.rpm | SHA-256: 51155a4fe5d4c98e81e66a32c572f798ed50d8b2dbdaeb1aa29e50ea363664b5 |
x86_64 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
pam_krb5-2.2.14-22.el5.x86_64.rpm | SHA-256: 3b883f06e447d932a6bc5dcd71492731b0e850cb20d588d17ae748d8625274a0 |
i386 | |
pam_krb5-2.2.14-22.el5.i386.rpm | SHA-256: 60a1f3caae2e8a8a72569261fc2936db201264363d343c51793f47df3dc8e5f2 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.