ALSA-2024:8860

[ALSA-2024:8860] Important: krb5 security update

Type:

security

Severity:

important

Release date:

2024-11-06

Description:

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).  

Security Fix(es):  

  * freeradius: forgery attack (CVE-2024-3596)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	krb5-server-ldap-1.18.2-30.el8_10.aarch64.rpm	0a74270b0de37b3f50cb351c48df7b6959d0af65e8289241e7d556a502b3d29e
aarch64	krb5-workstation-1.18.2-30.el8_10.aarch64.rpm	0c06971459ff55163a59f59caf1fe1dac45a7bd1b26c80c85eeef31beee08e11
aarch64	krb5-pkinit-1.18.2-30.el8_10.aarch64.rpm	204f7932f5eb29210ce5778cb6a896613eb717391da6c3a995f0453ded822226
aarch64	libkadm5-1.18.2-30.el8_10.aarch64.rpm	abec7c55be4ee131cde5b2d84b5ff5cbd0bedfecdc30c27fcb143453a437813b
aarch64	krb5-server-1.18.2-30.el8_10.aarch64.rpm	bd58355205e89fcaf193094bb0d6e3500a374086d1d60dd99c339df72cf0e67a
aarch64	krb5-devel-1.18.2-30.el8_10.aarch64.rpm	c297baf95e9676a138f665e946efca154b7ca1bf673db93966eebae8ba2580bc
aarch64	krb5-libs-1.18.2-30.el8_10.aarch64.rpm	f374fb1d99ecc144d1e7c16f8407c65144bea0ebf708e8e23762efdfd1859b70
i686	krb5-server-1.18.2-30.el8_10.i686.rpm	11d0e99c2eeea8870951062ae19161050e15320cebb65a02e4f27b9a8ec31f1c
i686	krb5-devel-1.18.2-30.el8_10.i686.rpm	59e805e67a70637e452097ae78ee27422b92c689d72754362c5471c5766cf6f2
i686	libkadm5-1.18.2-30.el8_10.i686.rpm	5c7bf3db3d9e2e06c10f6acbe614131cc1fc19011ea26ef681aff0fd40048336
i686	krb5-libs-1.18.2-30.el8_10.i686.rpm	6d8c997ff6cbbb4208cdf17c1b1622285fed2dd8f0806a50f30ccf0311de1f81
i686	krb5-server-ldap-1.18.2-30.el8_10.i686.rpm	7a39a0b3686c5d097572942467fd86222072256c8164f5b7291c16c47517aa42
i686	krb5-pkinit-1.18.2-30.el8_10.i686.rpm	ac402d80d9d79d05fb2ddd2d1f2a7e094a978eb3e30fc0fa8fb5d1749a683ee3
ppc64le	krb5-server-1.18.2-30.el8_10.ppc64le.rpm	636d148003ad8b708616e49bd9307c913d496284faf0ffec3c945a671e9520c5
ppc64le	krb5-server-ldap-1.18.2-30.el8_10.ppc64le.rpm	80e9284fa95857a153a3973e49ca9060622fd0a23cf903510a4ed2da28a922ec
ppc64le	libkadm5-1.18.2-30.el8_10.ppc64le.rpm	965bacd43b715f16d81f9a3a270eb99f8c3577b1bbd5de4def36ef266f6a9bef
ppc64le	krb5-pkinit-1.18.2-30.el8_10.ppc64le.rpm	9eec015c383a291f955893c7c4f6fff5f4db49a32e34009b8c6e8eebd5f80b02
ppc64le	krb5-workstation-1.18.2-30.el8_10.ppc64le.rpm	c03d1e367a80b05123f9eb1c0c26e4913a8cbaceb513ed8ac25d24d28b461005
ppc64le	krb5-libs-1.18.2-30.el8_10.ppc64le.rpm	de43621c47bb48147dd407a3bcd49c808fc12d15544bece6e995d641c322da87
ppc64le	krb5-devel-1.18.2-30.el8_10.ppc64le.rpm	f5b895a5191cd2a3c8e92873d9c940aa6927f306082333cd6841f7d62bf5c7e7
s390x	krb5-devel-1.18.2-30.el8_10.s390x.rpm	2bb4e689db633af60b01a318249d14ff5ffef69fa5b1be255b3a0b8f4165ae75
s390x	krb5-libs-1.18.2-30.el8_10.s390x.rpm	4c90458ecc58b6185ba703be7bf286b03b7956806c8c59c85d9b2d35a3dac69d
s390x	krb5-server-ldap-1.18.2-30.el8_10.s390x.rpm	651e0e4c566d36338b13d8e8b437b46199be357482da454b6e8aebdc038a45c5
s390x	libkadm5-1.18.2-30.el8_10.s390x.rpm	768132d44becb696ea958da41a6a22a49ac8342f2b5da7a06f83c34b3030d1b5
s390x	krb5-pkinit-1.18.2-30.el8_10.s390x.rpm	797f07f26dcde48fcd4a8d142cceddc46765c67c9798abc6a49559e86021ad50
s390x	krb5-server-1.18.2-30.el8_10.s390x.rpm	a1adb78a547c99addac1227a77616dbe9aa9ec009fb9742cb24f00f12ac5cca1
s390x	krb5-workstation-1.18.2-30.el8_10.s390x.rpm	b4101db61b5de56c37a4e88db5be028a205a11c073200a585a6b386ed2f487a7
x86_64	krb5-libs-1.18.2-30.el8_10.x86_64.rpm	461c000fccc056334410580a1474d99371755caa038e150f16b7608169f8faee
x86_64	krb5-devel-1.18.2-30.el8_10.x86_64.rpm	48cc644fe07805f1aed19e2937bb41ba36270390fa703075a506b21d3ebf4c9f
x86_64	krb5-server-1.18.2-30.el8_10.x86_64.rpm	93c9dbefcd05da006978b1d03852cf8acd612e4faed250532dee4a2bec926c28
x86_64	krb5-server-ldap-1.18.2-30.el8_10.x86_64.rpm	bc6c05de372372c1562c93c292f7b570f3620793714ee6eca671babb8b6d8619
x86_64	krb5-pkinit-1.18.2-30.el8_10.x86_64.rpm	cda362aa1c48bfbb464cbb7a81668f6412068a06b46a0ae7258d9ee65278a83a
x86_64	krb5-workstation-1.18.2-30.el8_10.x86_64.rpm	f988dbf17d54cf2a9e3b1115dbbbc2b8bc84cd714bb3d7707e82998f2188954a
x86_64	libkadm5-1.18.2-30.el8_10.x86_64.rpm	fa99ca7dd6e2f6a4298ca8e6cf4d9170682b3fefe05330e59f98c5ea55bc0d46

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.