ALSA-2025:9418

[ALSA-2025:9418] Moderate: krb5 security update

Type:

security

Severity:

moderate

Release date:

2025-07-28

Description:

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).  

Security Fix(es):  

  * krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions (CVE-2025-3576)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libkadm5-1.21.3-8.el10_0.aarch64.rpm	28e2ec5ab71f3f005ada781f0f3a88737ac9d4e7aee2c90649e7aee7a8a2f514
aarch64	krb5-server-1.21.3-8.el10_0.aarch64.rpm	464746fb1464571f3e66bb16101b738acbdd5915009995a9c3ba2634452910df
aarch64	krb5-workstation-1.21.3-8.el10_0.aarch64.rpm	46c04941782bf66cd18fd264f6be102fb965697610fa5cc91ae75f46029f89b0
aarch64	krb5-devel-1.21.3-8.el10_0.aarch64.rpm	4b0e0b851a55d59011728373eba1a390e536a6030607c56396122742ba295967
aarch64	krb5-libs-1.21.3-8.el10_0.aarch64.rpm	aaf1262a2989a70ddf790966edc225677a39c4879436f8a1b5cec039e2c92d5b
aarch64	krb5-server-ldap-1.21.3-8.el10_0.aarch64.rpm	e012013788fccad745162fd851f64c4b12a7deeb068ba9fb5ffcc486e4ecd658
aarch64	krb5-pkinit-1.21.3-8.el10_0.aarch64.rpm	fb9bfcffc6dbeb81c01775ba3f04f428575615e20929939a31cb324730c361b1
ppc64le	krb5-pkinit-1.21.3-8.el10_0.ppc64le.rpm	23593712c9f7b5705f1b84005d5bf1e775d028ae6035caa452b19fb7116631c0
ppc64le	krb5-libs-1.21.3-8.el10_0.ppc64le.rpm	28e4b1b527ccff925eedb20facaffbd6a1622d5cb76a3c84eaa6ef99f959fa76
ppc64le	krb5-workstation-1.21.3-8.el10_0.ppc64le.rpm	4b07757189ba4da0446fc9a875a4ff364f92f1bad5fa73c878bd1cee297b196a
ppc64le	krb5-server-ldap-1.21.3-8.el10_0.ppc64le.rpm	593d235bd5ef3556bff1a72eaa37f0149f5cd43f1d81ea1cfee1a5b08dd6e011
ppc64le	libkadm5-1.21.3-8.el10_0.ppc64le.rpm	a4bd651c773049da47ab8596eabc77df733d946ff915ce8d55785649fa7bf6cf
ppc64le	krb5-devel-1.21.3-8.el10_0.ppc64le.rpm	a7fae0cd130cdc9b4b17d3ae7f0461e6a6c15dbd876f9b7a7a6b423db5f0237f
ppc64le	krb5-server-1.21.3-8.el10_0.ppc64le.rpm	de1dfbdb7eb319658922a2ff198ba1e1583a73b6016dce4b4c510adf48eb2032
s390x	krb5-libs-1.21.3-8.el10_0.s390x.rpm	15728b87ace6f0ee03a9a38179a0cd149b06476e97fc8e723076e470af655cbe
s390x	krb5-pkinit-1.21.3-8.el10_0.s390x.rpm	64f624852962a168bc37150c301dbfdc8c3d3196e0318bec2029c4aad3266af6
s390x	libkadm5-1.21.3-8.el10_0.s390x.rpm	6f2b6f75a60a14adad038ff625e88b68569fd224671924b49be8123c76e1ba6c
s390x	krb5-server-ldap-1.21.3-8.el10_0.s390x.rpm	9431b14835848fc843c53ec31552284150f9648f62e1f17efb14d4c82f4d919a
s390x	krb5-workstation-1.21.3-8.el10_0.s390x.rpm	9c0f92e148527bb7fc28dd974f6306d4cb61d3a54cbb7093fe478a1c56de2d1d
s390x	krb5-devel-1.21.3-8.el10_0.s390x.rpm	a61016c126cedf182f5cf7f561d1ff6c052046b8050418d718c12e4b63d5efcd
s390x	krb5-server-1.21.3-8.el10_0.s390x.rpm	d798091545828e0fb3a9438f4482bcce4370ada010a9b12ef79f02d55ac42636
x86_64	krb5-pkinit-1.21.3-8.el10_0.x86_64.rpm	166a3a3b5af991bab42f681a101bb1255a44242f9b38945f165bc7d66f3bdb80
x86_64	krb5-workstation-1.21.3-8.el10_0.x86_64.rpm	28f91be64668d2e4b8749e0dddeca33b0f68a39ae9ef97ed07cb0cdc0608441e
x86_64	libkadm5-1.21.3-8.el10_0.x86_64.rpm	9b57a99471abec8395bb46b71b8500298822dc3bf4a3f7d0b3f0831f47374f20
x86_64	krb5-libs-1.21.3-8.el10_0.x86_64.rpm	9d8cfeffc72c100d46fb5f3cfcdd6a498a971fd16182f06884e5f4a0ec6723d1
x86_64	krb5-devel-1.21.3-8.el10_0.x86_64.rpm	9efc6edc70570c291fc0037f4b5d910898c067b6939f0fa1eccbbe26350595ae
x86_64	krb5-server-ldap-1.21.3-8.el10_0.x86_64.rpm	d9dff07efc68b3ec3d32f06155c36fa5f3d16dd8653fa03f7efbef979376f426
x86_64	krb5-server-1.21.3-8.el10_0.x86_64.rpm	db6011157e63a530963c42352948110eb0cc1abc38f6779918c9832b89c01620
x86_64_v2	krb5-workstation-1.21.3-8.el10_0.x86_64_v2.rpm	10e4b226923904583ac85fd9b3e1369d4edd96c6df0b38af78ca734adb0f53be
x86_64_v2	libkadm5-1.21.3-8.el10_0.x86_64_v2.rpm	6d00e0ea106543ed9ca91de4d8671cb10e849a203e6575e20003c60836f424fa
x86_64_v2	krb5-pkinit-1.21.3-8.el10_0.x86_64_v2.rpm	9c7424646e87c10bf72b33792ec2133c86f454b6f2c2863d2eabb076a56a9098
x86_64_v2	krb5-server-ldap-1.21.3-8.el10_0.x86_64_v2.rpm	c98b732e2c8723e9f8166c7375956e30783f3b7f1ca061e473206ddab222d378
x86_64_v2	krb5-devel-1.21.3-8.el10_0.x86_64_v2.rpm	cad4f1b1fbfd275ed34ea5c72d20fda29fe8cf30443cba157c9cf13d4b634996
x86_64_v2	krb5-server-1.21.3-8.el10_0.x86_64_v2.rpm	f14cce1b4531ab49a6a119428edc81a45ccf23b876096a63f57123494bd3c260
x86_64_v2	krb5-libs-1.21.3-8.el10_0.x86_64_v2.rpm	ff2435dc320daaa17d0c8cf07eef1fa48a3f55d77fff81d3c83865727f2b3fd9

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.