ALSA-2024:9331

[ALSA-2024:9331] Moderate: krb5 security update

Type:

security

Severity:

moderate

Release date:

2024-11-18

Description:

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).  

Security Fix(es):  

  * krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c (CVE-2024-26458)
  * krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c (CVE-2024-26461)
  * krb5: Memory leak at /krb5/src/kdc/ndr.c (CVE-2024-26462)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.  

Additional Changes:  

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	krb5-server-1.21.1-3.el9.aarch64.rpm	601ecc8c6106a1c3cb03fb5d8624576bcf2bc6476ac0c0f6c36ef677c013f654
aarch64	krb5-devel-1.21.1-3.el9.aarch64.rpm	7a97084e19e12270badf014adc6d827862fd1d3efc4c8ef41e02cc126f269510
aarch64	libkadm5-1.21.1-3.el9.aarch64.rpm	ba416e1f93656c37f525b2c92a0d8ba9c5a5fb81fdc661c97c78b958ba7bee42
aarch64	krb5-workstation-1.21.1-3.el9.aarch64.rpm	cbf8b9ea72d83a2bec2d55dc38e72dd0a6a688f13cae314d9bcb0866584445d1
aarch64	krb5-pkinit-1.21.1-3.el9.aarch64.rpm	d2876fbaff05003186f764596631e11a4923e90794fdabee4909308fd5045ee9
aarch64	krb5-server-ldap-1.21.1-3.el9.aarch64.rpm	db75fffe067fa8164ecca8f9841b5dcd4697cc87ab1a7bff826c24a629e7028b
aarch64	krb5-libs-1.21.1-3.el9.aarch64.rpm	f636a6ba9959253932be9cff5f601c2edd6ac0555ca3c2929c288c294ef5a223
i686	krb5-libs-1.21.1-3.el9.i686.rpm	1cf5bed811eba1d651d5794cae1c428142d23f919a2c261ed717b2536b4e104e
i686	krb5-server-1.21.1-3.el9.i686.rpm	3e9e0910b434b605c6b132803b190c72428f5c2adaac803471d1ce77e9fbf65e
i686	krb5-pkinit-1.21.1-3.el9.i686.rpm	938086c9080283840b870d4ea1996b48bc22a28f8236c87a62c640d15a78f8b6
i686	krb5-server-ldap-1.21.1-3.el9.i686.rpm	b4b69bef69ebd230f848c52ca9b221f129c58fb7430502333bcb0ab3a6cb5337
i686	libkadm5-1.21.1-3.el9.i686.rpm	f3626feda9f911b92bb14ae78bc4a3c62f16380f47eec2c4f83c66c342581afd
i686	krb5-devel-1.21.1-3.el9.i686.rpm	fbe847517c3ce0662421503fdd9ffb4fffa93672ee0fd36eb9bc11d5b4e6f718
ppc64le	krb5-pkinit-1.21.1-3.el9.ppc64le.rpm	526dc4afc8abcc4ebe1ee16c8b25ee243335056a5790f665b246b9a96d7f03c4
ppc64le	libkadm5-1.21.1-3.el9.ppc64le.rpm	9143f118697e45527b592b0ccd9b2e321e4cecd5ccb31287b96d64d13869cdd0
ppc64le	krb5-libs-1.21.1-3.el9.ppc64le.rpm	91481b68ae318cd68926a288ed207c7cd3a75f0c701b651bcba62cbeb9143c72
ppc64le	krb5-server-ldap-1.21.1-3.el9.ppc64le.rpm	961f6ed5d47603cdd883562d4c3c6be75f25077f42c07bc8c36b509ec1af0b4f
ppc64le	krb5-server-1.21.1-3.el9.ppc64le.rpm	bb3966f8befbec8757845843d5de3030fb2cb41eb6022284a18d1494e214755b
ppc64le	krb5-workstation-1.21.1-3.el9.ppc64le.rpm	c0d7d0e5dd7b4c4fc5b5537d391fdfc1ce9194f8af90c94a37d57002cc42c9c9
ppc64le	krb5-devel-1.21.1-3.el9.ppc64le.rpm	fc8f56bb5d17f615021e201733f678e2614f2c8f79a35fdb1493416734b1ea62
s390x	krb5-workstation-1.21.1-3.el9.s390x.rpm	299147b02e03a88b5940e67beaf9f0d0d7dc05bff174928508742c431b6a1b2c
s390x	krb5-devel-1.21.1-3.el9.s390x.rpm	65f5c92c9da7dcda68c397de0c9ee77d3ff71472ae7486476f57f4466ad1b713
s390x	krb5-libs-1.21.1-3.el9.s390x.rpm	6a854e677d40feafa460d25d549678bd5ada56c9bc3cd46d5843f021591cf064
s390x	krb5-server-ldap-1.21.1-3.el9.s390x.rpm	7e6511139fd58aca995ceb04ff181a7d75729f37693125323c6960a441f05884
s390x	libkadm5-1.21.1-3.el9.s390x.rpm	86c8cc1a87cb1b1b0eff40abbc4a283e4453f37d63e2e8c04d6677a4ac389bea
s390x	krb5-server-1.21.1-3.el9.s390x.rpm	8ec53def474f35043b3cd6ddad12d221604ef3dee4befb6b2112c3181ce3e02b
s390x	krb5-pkinit-1.21.1-3.el9.s390x.rpm	b2894bba4c81b16c0db18cff1b830fdd7f06c8949e9379f4abb4050574e05131
x86_64	libkadm5-1.21.1-3.el9.x86_64.rpm	1f544c86724d0d68cfc08ce238565976906bdadb37659ca108657cdfddecf518
x86_64	krb5-server-ldap-1.21.1-3.el9.x86_64.rpm	4314a6b529bc4741af0ba6fd2a170b63c3658e03a8e2cfbbab8fbced01764694
x86_64	krb5-devel-1.21.1-3.el9.x86_64.rpm	47e17217d4fbce234885651e861733a9d6b96e66976d77afbeae17e8316955c9
x86_64	krb5-libs-1.21.1-3.el9.x86_64.rpm	6f79783d3976111836d21cef849089e2d8f0c097b58c5a0c3597a7c8248e1f17
x86_64	krb5-server-1.21.1-3.el9.x86_64.rpm	9f595bbad35673f2c8daa359dbb51d32c3a2c2cee2f7f53f12dc8fd980b7c432
x86_64	krb5-pkinit-1.21.1-3.el9.x86_64.rpm	b5a7c28632a423dcd2488266a89aa04421b879958fe144ccf1e8543f815f6bd1
x86_64	krb5-workstation-1.21.1-3.el9.x86_64.rpm	fc1e3e228dfd29129670d2aecb21f07be8a0205962ad2e0aca90550b2f8d24dd

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.