Bug Fix Advisory mod_auth_kerb bug fix update

Advisory: RHBA-2013:0860-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2013-05-23
Last updated on: 2013-11-20
Affected Products: Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux HPC Node (v. 6)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Workstation (v. 6)

Details

Updated mod_auth_kerb packages that fix one bug are now available for Red Hat
Enterprise Linux 6.

The mod_auth_kerb package provides a module for the Apache HTTP Server designed
to provide Kerberos authentication over HTTP. The module supports the Negotiate
authentication method, which performs full Kerberos authentication based on
ticket exchanges.

This update fixes the following bug:

* Previously, when the KrbLocalUserMapping directive was enabled,
mod_auth_kerb did not translate a principal name properly if the local
name was of a higher length. Consequently, the Apache server returned the HTTP
500 error in such a scenario. A patch has been provided to address this issue
and the module now correctly translates account names longer than their
counterpart principal names. (BZ#867153)

Users of mod_auth_kerb are advised to upgrade to these updated packages, which
fix this bug.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

Red Hat Enterprise Linux Desktop (v. 6)

IA-32:
mod_auth_kerb-5.4-10.el6.i686.rpm
File outdated by:  RHBA-2016:0804
    MD5: c637909d1ad0150994fefc2701151940
SHA-256: d612ecfc55041fbbfaf038f32c14dc43f4ce7804c650eb8e24c8bc98d5979353
mod_auth_kerb-debuginfo-5.4-10.el6.i686.rpm
File outdated by:  RHBA-2016:0804
    MD5: 1df816533f8cd6ba503a7f901d4df857
SHA-256: dbe859fcd76d47d6dd122f09c5e93202772fffe3f0e2e13f3bf428a8085b4d0b
 
x86_64:
mod_auth_kerb-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: 9238c07c72e5b6aaa1e4f821c79c8922
SHA-256: 6e46ab3dba0295fd7cf6760fe9bb7ba127f519a9ff9bc20c162a8396c7069fdc
mod_auth_kerb-debuginfo-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: c473171560ce95abfe01c70ee0d5d5ac
SHA-256: dc272d2546ffb0f962b5915c0c2d7c516a6f560914546166d47192da93428e01
 
Red Hat Enterprise Linux HPC Node (v. 6)

x86_64:
mod_auth_kerb-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: 9238c07c72e5b6aaa1e4f821c79c8922
SHA-256: 6e46ab3dba0295fd7cf6760fe9bb7ba127f519a9ff9bc20c162a8396c7069fdc
mod_auth_kerb-debuginfo-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: c473171560ce95abfe01c70ee0d5d5ac
SHA-256: dc272d2546ffb0f962b5915c0c2d7c516a6f560914546166d47192da93428e01
 
Red Hat Enterprise Linux Server (v. 6)

IA-32:
mod_auth_kerb-5.4-10.el6.i686.rpm
File outdated by:  RHBA-2016:0804
    MD5: c637909d1ad0150994fefc2701151940
SHA-256: d612ecfc55041fbbfaf038f32c14dc43f4ce7804c650eb8e24c8bc98d5979353
mod_auth_kerb-debuginfo-5.4-10.el6.i686.rpm
File outdated by:  RHBA-2016:0804
    MD5: 1df816533f8cd6ba503a7f901d4df857
SHA-256: dbe859fcd76d47d6dd122f09c5e93202772fffe3f0e2e13f3bf428a8085b4d0b
 
PPC:
mod_auth_kerb-5.4-10.el6.ppc64.rpm
File outdated by:  RHBA-2016:0804
    MD5: 6a6a65fedcbfd0237dc9499c4f77e9d6
SHA-256: a9fc6aa86fca7e185a46206b2383c270bd00a7b64cca4174caec95209ed9bf51
mod_auth_kerb-debuginfo-5.4-10.el6.ppc64.rpm
File outdated by:  RHBA-2016:0804
    MD5: 8a9ef12fce6af8237998be0990e01f19
SHA-256: eb9005a4cb22e0b5bea21fdd62ce55de0384d36765738dbcfc56df2b3c8c0ef1
 
s390x:
mod_auth_kerb-5.4-10.el6.s390x.rpm
File outdated by:  RHBA-2016:0804
    MD5: cfc22306ae1e70cf4ac0777a5be3f91f
SHA-256: 427c7562f0626c919ebf5a88b5eb3bede58d5d089c539a72888758c100cd79dd
mod_auth_kerb-debuginfo-5.4-10.el6.s390x.rpm
File outdated by:  RHBA-2016:0804
    MD5: 7176ffa7fbcfad365b55ffc23dfb7a13
SHA-256: df87db573c7b3ca1a2610db17ef63593a59f6da73e5ffc748c70fe3682a02241
 
x86_64:
mod_auth_kerb-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: 9238c07c72e5b6aaa1e4f821c79c8922
SHA-256: 6e46ab3dba0295fd7cf6760fe9bb7ba127f519a9ff9bc20c162a8396c7069fdc
mod_auth_kerb-debuginfo-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: c473171560ce95abfe01c70ee0d5d5ac
SHA-256: dc272d2546ffb0f962b5915c0c2d7c516a6f560914546166d47192da93428e01
 
Red Hat Enterprise Linux Workstation (v. 6)

IA-32:
mod_auth_kerb-5.4-10.el6.i686.rpm
File outdated by:  RHBA-2016:0804
    MD5: c637909d1ad0150994fefc2701151940
SHA-256: d612ecfc55041fbbfaf038f32c14dc43f4ce7804c650eb8e24c8bc98d5979353
mod_auth_kerb-debuginfo-5.4-10.el6.i686.rpm
File outdated by:  RHBA-2016:0804
    MD5: 1df816533f8cd6ba503a7f901d4df857
SHA-256: dbe859fcd76d47d6dd122f09c5e93202772fffe3f0e2e13f3bf428a8085b4d0b
 
x86_64:
mod_auth_kerb-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: 9238c07c72e5b6aaa1e4f821c79c8922
SHA-256: 6e46ab3dba0295fd7cf6760fe9bb7ba127f519a9ff9bc20c162a8396c7069fdc
mod_auth_kerb-debuginfo-5.4-10.el6.x86_64.rpm
File outdated by:  RHBA-2016:0804
    MD5: c473171560ce95abfe01c70ee0d5d5ac
SHA-256: dc272d2546ffb0f962b5915c0c2d7c516a6f560914546166d47192da93428e01
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

867153 - bugfix: mod_auth_kerb wrt KrbLocalUserMapping



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/