ALSA-2025:7067

[ALSA-2025:7067] Moderate: krb5 security update

Type:

security

Severity:

moderate

Release date:

2025-07-02

Description:

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).  

Security Fix(es):  

  * krb5: overflow when calculating ulog block size (CVE-2025-24528)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.  

Additional Changes:  

For detailed information on changes in this release, see the AlmaLinuxRelease Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	krb5-devel-1.21.1-6.el9.aarch64.rpm	13ffa49bfc2e6bc16fffd6ab7f5780257d16c6b1a0b620b4155ca55712e02dea
aarch64	libkadm5-1.21.1-6.el9.aarch64.rpm	adf7e92818ebbb94fabd2ad379d8cd7ef5f23ed4988edfc35267d98bb0fc7f02
aarch64	krb5-server-ldap-1.21.1-6.el9.aarch64.rpm	b0c67e3a62a93b31f31a38060522af0edb1523a2f305e4206521f6eaa71ae701
aarch64	krb5-server-1.21.1-6.el9.aarch64.rpm	c5bbf3b96c67b3a85fd056482906a70a3145d7e85088b5acb15150ea48842717
aarch64	krb5-pkinit-1.21.1-6.el9.aarch64.rpm	cfa16146ba9bb6bdfda574a55bd9d8e1197ec2fa5d6e03957d6393a9b048610c
aarch64	krb5-libs-1.21.1-6.el9.aarch64.rpm	dd7e7db6f95819aacbb51aa4eaedfd6da22b46622bbe5a13d9465c53aea07405
aarch64	krb5-workstation-1.21.1-6.el9.aarch64.rpm	e7a4ac0bd6a9805d8a9f50f53d4b8e19514d9eca0f62d6d576fdd6fe7ef022aa
i686	libkadm5-1.21.1-6.el9.i686.rpm	4cfe43da07a19f4561e9508df20baa1cf4595e8ed90bef249058868bc1c0f7a5
i686	krb5-server-1.21.1-6.el9.i686.rpm	7a4ab5e95b82eb578d8f4c41acc028a47b4d1e608a22769e8708bf5d5a172d4e
i686	krb5-pkinit-1.21.1-6.el9.i686.rpm	82a8f0f5782d2785f31defb06fd6b03b30d73cd4d3ba236c93a1b36aa8a75d2b
i686	krb5-devel-1.21.1-6.el9.i686.rpm	82eca122cd180aecaed416678afd690a6e3a6bdf7517ceea693e40d3f88e0176
i686	krb5-libs-1.21.1-6.el9.i686.rpm	904ee44e125283a3c55875f5c4c1123e871d9289ab6d09575f4969e26b92ba96
i686	krb5-server-ldap-1.21.1-6.el9.i686.rpm	e52a9f87dbc3cb097068b46e6f9d37683f6456db520101c1d6e8f9eb0ec89143
ppc64le	libkadm5-1.21.1-6.el9.ppc64le.rpm	21a549f7d07200df8155b1656098a9dbe88b950ebbb826ea22536a8e0b5fc24a
ppc64le	krb5-libs-1.21.1-6.el9.ppc64le.rpm	340b2a306ee377bce1bbe6b0cf1e54e62b7a11e6446980ba0bee61fb478a4d0e
ppc64le	krb5-pkinit-1.21.1-6.el9.ppc64le.rpm	9229917ce374aedda3401a7aca018f45b3414b18c5fb0636257141765b0edf3c
ppc64le	krb5-server-ldap-1.21.1-6.el9.ppc64le.rpm	a838af0412b07829904b73d6bb10222dafed62077f53ac7bf5cd15d7ea2a1126
ppc64le	krb5-workstation-1.21.1-6.el9.ppc64le.rpm	ae833a44003b205bf1696cba6ca1aa1e4435f6d535bf8c56cbb3007f592688c3
ppc64le	krb5-server-1.21.1-6.el9.ppc64le.rpm	e653eb8e07e1c58e036a2bd3beca388d2eaae338c194275d917694e620376345
ppc64le	krb5-devel-1.21.1-6.el9.ppc64le.rpm	ff6a36fd272c6fbab6babdc2c12a4d962243c1634964a8559ba08a56ece37e53
s390x	krb5-server-1.21.1-6.el9.s390x.rpm	04952465b3473473a643b874cc1c9cea004c32387305a36935bcde1d7e820b46
s390x	krb5-pkinit-1.21.1-6.el9.s390x.rpm	4c913df0cd61c968cfb727c1ba54a76d50887b4ff212f018dc1080b82905e2f4
s390x	krb5-libs-1.21.1-6.el9.s390x.rpm	6d38e18d6e7efcc98b4d51e9e546511fee28822e8e0f656c4124eb30d82583f2
s390x	krb5-devel-1.21.1-6.el9.s390x.rpm	916b7958535976690f50232077ce0b8b8961c627f64e7603063d6edd720d3a49
s390x	libkadm5-1.21.1-6.el9.s390x.rpm	aa46a072556c75fab725f8433db24eda5d630d2f2550002cbd03e2b81701a886
s390x	krb5-workstation-1.21.1-6.el9.s390x.rpm	c380190a5eecf26beb3d87cf0359e59185ff127b6e388320e344646f22b9e925
s390x	krb5-server-ldap-1.21.1-6.el9.s390x.rpm	fb518b22a70e20aa37ccd1418fac41c1cebee1b6c765d7907d562daad742d292
x86_64	libkadm5-1.21.1-6.el9.x86_64.rpm	19d81c5a8a91d38e7bd9f5137dc3d8a1a493507b849f9202987f23b362be4ef2
x86_64	krb5-server-1.21.1-6.el9.x86_64.rpm	8ab94ce163b1a7904478b4ecfe525a116bbaabdff30fceb6735bfcc2cf4bb5d3
x86_64	krb5-pkinit-1.21.1-6.el9.x86_64.rpm	8f9d76478d374983640f4e32fd0356f622111e4a48f62ee6eef9b171265cc899
x86_64	krb5-libs-1.21.1-6.el9.x86_64.rpm	a49f4502cd5d43a0b07343f172288696ffeab469fec07f2e20ef2f29819f3133
x86_64	krb5-devel-1.21.1-6.el9.x86_64.rpm	affec26a69488ab6e2a9ae94a8a7ae5870f51cbf1607630027a0a21f98a8095b
x86_64	krb5-server-ldap-1.21.1-6.el9.x86_64.rpm	b9ea7ee88d578401f1827bea1ce0ac568751f95349a60f1a98357fc262131d14
x86_64	krb5-workstation-1.21.1-6.el9.x86_64.rpm	f44329f85139c3abbb1b278e151a272e45bb5247a6a95e9115cc89fc088d2c5a

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.