ALSA-2025:9430

[ALSA-2025:9430] Moderate: krb5 security update

Type:

security

Severity:

moderate

Release date:

2025-06-30

Description:

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).  

Security Fix(es):  

  * krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions (CVE-2025-3576)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	krb5-libs-1.21.1-8.el9_6.aarch64.rpm	01d828231117020b95a9888a50211eb166e707b7f97dccbd158682d17c3eab83
aarch64	krb5-devel-1.21.1-8.el9_6.aarch64.rpm	2533f2668b60e02b07531670de426497ba8d7e836396fc568b592918d0754487
aarch64	krb5-server-1.21.1-8.el9_6.aarch64.rpm	30960d490990c0203e6c3158f3decdbdabb130fe822c7056457a6583532871b5
aarch64	krb5-pkinit-1.21.1-8.el9_6.aarch64.rpm	39d8f6c55aa9358ff4573b289f8e8d24d2460181924f21dccb584eeee4797469
aarch64	libkadm5-1.21.1-8.el9_6.aarch64.rpm	47958640b02dd386a3c7d4f62c9a99efc9d3409ffba128955260198525f75390
aarch64	krb5-server-ldap-1.21.1-8.el9_6.aarch64.rpm	b9e73cea8f2b377246436c6d2586f4656e54d0c6da6ad808988275d3d50b41d3
aarch64	krb5-workstation-1.21.1-8.el9_6.aarch64.rpm	bd551c9324876fa88354cff6ea1e68303d7d9375b8f883efabe148c415177215
i686	libkadm5-1.21.1-8.el9_6.i686.rpm	4566c101d834e0e59770a59ec408d8ef118cbeb42b1aa6ca4a1e03fa0620ee76
i686	krb5-server-1.21.1-8.el9_6.i686.rpm	8861ac32097f1cb56fd4140073e3f27f430168b8c0b2d45e6c33959379a647c3
i686	krb5-server-ldap-1.21.1-8.el9_6.i686.rpm	9e9595327e179a0bec19f9968e17f758855dc5b9fd3fd16601e753d4f810727f
i686	krb5-libs-1.21.1-8.el9_6.i686.rpm	b4e56c6b18dada36390cfc17a94ff2d2300f1d2319d58337c5d6fdb35889aaa5
i686	krb5-devel-1.21.1-8.el9_6.i686.rpm	cd4bc7c3a133c9afa5a5a68fd1b71f8e410feed1304b8d560e45be288af806de
i686	krb5-pkinit-1.21.1-8.el9_6.i686.rpm	d60ca29c11342462cadd13808fe5a6ec0c7783a580dcad40f0c212d2d9009267
ppc64le	libkadm5-1.21.1-8.el9_6.ppc64le.rpm	6f7ccbbe1caa0072914eb943dbaa8f69f2de9659ae2eefcab491ac5ef7cf3695
ppc64le	krb5-server-1.21.1-8.el9_6.ppc64le.rpm	9e8b9d82b7c47c0188b4ba2d6542ca3180264777132c4a15fa95a4b63df4d938
ppc64le	krb5-pkinit-1.21.1-8.el9_6.ppc64le.rpm	addba34d150c7b8bd3bebedd4a2b9449438fac861b3cff290c4c7a0745dd0879
ppc64le	krb5-devel-1.21.1-8.el9_6.ppc64le.rpm	b9d224182e5a09dc63ef474cb9b04675eff1281cb0d93a8ac21b4a1da59b68e8
ppc64le	krb5-workstation-1.21.1-8.el9_6.ppc64le.rpm	eb6993d340086820afb8469ca4f45f4cbe65f8ce36c43c89fc8dabb4d23b8585
ppc64le	krb5-libs-1.21.1-8.el9_6.ppc64le.rpm	fd3257623d63a8039d5c935f758cdaaf17282d1bf2df735f7b032489025557ac
ppc64le	krb5-server-ldap-1.21.1-8.el9_6.ppc64le.rpm	feee12abbda6f8b078733e9a8ec3e7d8da83779e1792d4d55c4d338df118beb2
s390x	krb5-pkinit-1.21.1-8.el9_6.s390x.rpm	0dc7f28426b463318b3f632e6eefa96b77def3bd88e8512ebdf37cae75b7bfd7
s390x	krb5-workstation-1.21.1-8.el9_6.s390x.rpm	308f4ab5ec40bf258883766708c89fd67cf884f149fe25373d624c29492724a3
s390x	krb5-server-ldap-1.21.1-8.el9_6.s390x.rpm	651e571136b71e26a9266ee83ba272f9d3d982d0df444e5859f7e00252916773
s390x	krb5-server-1.21.1-8.el9_6.s390x.rpm	83fe71cdb5d60ec54014782256792013d5378c9b5f52911515ae59081d48238d
s390x	krb5-libs-1.21.1-8.el9_6.s390x.rpm	9badacf017800bffff7949e2da30a3db889087abdb17398bfec4542f3958c593
s390x	libkadm5-1.21.1-8.el9_6.s390x.rpm	9d0a435f32ddf613f9ff494d7ef0c525cb9db8c1ef4521f9af11b9ddc6bc1b14
s390x	krb5-devel-1.21.1-8.el9_6.s390x.rpm	b7e73b332ac4ff7bb0711616e4cef5d78ae27843964fdedb1dc235e7971caf21
x86_64	krb5-devel-1.21.1-8.el9_6.x86_64.rpm	9c53ffb94c9335067d8a45fa430e6cd125ee6dbcce2fd108cfbfd928d667381a
x86_64	krb5-server-ldap-1.21.1-8.el9_6.x86_64.rpm	c79a953c317dd99c90e814f7b5db1e26a14e933478d18e5f932b2e99453f5b88
x86_64	krb5-libs-1.21.1-8.el9_6.x86_64.rpm	d1237fb8b81e9630869b03952281045b21805bb87f89481c4eadae0a9564dec2
x86_64	krb5-server-1.21.1-8.el9_6.x86_64.rpm	dd70e43018b337e3bbc938e2fbcedd87f23714d6af48834c23f1d76c20bf3b8b
x86_64	krb5-workstation-1.21.1-8.el9_6.x86_64.rpm	e0e5bd46fd29e19ed3eeddfefaf5c131b8fcd66da0b8a43e7a87e0aae7e67114
x86_64	libkadm5-1.21.1-8.el9_6.x86_64.rpm	e3047f490160cfc3a1246da4fe1c8923643f7376600a10e420957c8b6b91226b
x86_64	krb5-pkinit-1.21.1-8.el9_6.x86_64.rpm	e564a7c08ce2737923b923f102ff39a42d348f70ba55c421b67c2b6fd5946bec

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.