krb5-1.21.1-2.el9_4
エラータID: AXSA:2024-8746:04
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).
Security Fix(es):
* krb5: GSS message token handling (CVE-2024-37371)
* krb5: GSS message token handling (CVE-2024-37370)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2024-37370
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.
CVE-2024-37371
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.
Update packages.
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can modify the plaintext Extra Count field of a confidential GSS krb5 wrap token, causing the unwrapped token to appear truncated to the application.
In MIT Kerberos 5 (aka krb5) before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.
N/A
SRPMS
- krb5-1.21.1-2.el9_4.src.rpm
MD5: e9e3814da53e9f0e66acaf69730f0bc0
SHA-256: eb678706815013f9e4cd1baa3037607f2d3eef2a3a649acfecfaeaa7b9f7cbd7
Size: 8.34 MB
Asianux Server 9 for x86_64
- krb5-devel-1.21.1-2.el9_4.i686.rpm
MD5: b4dbd9a2203d95d30e2c96b2c199bcd0
SHA-256: 0428b28b3e5b199e7301199cb7f9923cef9c17dc454fb5e3bde5984c1abfd90b
Size: 145.12 kB - krb5-devel-1.21.1-2.el9_4.x86_64.rpm
MD5: b86c6fd5a84134309733d19becf90543
SHA-256: efe6c17303e694d3ccf9de11007c1c6dddfa22a918ed50b0ebada6eead7f9958
Size: 145.15 kB - krb5-libs-1.21.1-2.el9_4.i686.rpm
MD5: 15830496d2492099c3333df04c4cd932
SHA-256: 7f8960ecd871a56d5842f3df77c0320b193123d5a88773fe83abff387c588996
Size: 809.61 kB - krb5-libs-1.21.1-2.el9_4.x86_64.rpm
MD5: fca5a51d34af4f3da46c2d6125928562
SHA-256: 3d81a5d860d30a75a87eeef298c432e65c43e38d4cca9088a45a7ec78f24ceff
Size: 760.79 kB - krb5-pkinit-1.21.1-2.el9_4.i686.rpm
MD5: 278cf2fb96ae082aa4bce18bb4fd0ca3
SHA-256: 32322e25a70f120fd90a2981ff1cd8c90311a7dc46960c08c6251a10e8a93103
Size: 63.43 kB - krb5-pkinit-1.21.1-2.el9_4.x86_64.rpm
MD5: 7915c638323b5d5f899cf46430dcbfa8
SHA-256: 0b1aadfa59d8fdaa44684a4a16548ad3838f9cf845282474bea244cab9e88668
Size: 58.12 kB - krb5-server-1.21.1-2.el9_4.i686.rpm
MD5: 4ddea37ad9171cb1ddbe6a53a5ce6055
SHA-256: 62ec2cc85b095c7db41988b3223e2d791360f64a9e07bc72b73ecfeb0e14bf52
Size: 315.66 kB - krb5-server-1.21.1-2.el9_4.x86_64.rpm
MD5: afee562165c6bd0e652f517d2862ac73
SHA-256: b7cdb97f5bca5998cbec8960909b227f6c5cbb982a0a4e338e1f081e5955ff01
Size: 303.22 kB - krb5-server-ldap-1.21.1-2.el9_4.i686.rpm
MD5: e091a0fb8d06c8a3eba305a6619b2332
SHA-256: 6e69fbf0706265951986524b915b84e89643579a226ffd35e7fbc3e8de33f31a
Size: 93.94 kB - krb5-server-ldap-1.21.1-2.el9_4.x86_64.rpm
MD5: 1ab5350d7ec490f7a611a5c460e3e4b7
SHA-256: 415e9eedb2e2dee31e56b106fd5963d8f2a52fabb7fc13ae8eb55fa3917becfd
Size: 89.33 kB - krb5-workstation-1.21.1-2.el9_4.x86_64.rpm
MD5: a546b14ba60c49b1786c104c15149643
SHA-256: b68fc8ee42bcbe2e2519a281b91fc48c82b0f4f64e494b1f1f31749132946b01
Size: 532.91 kB - libkadm5-1.21.1-2.el9_4.i686.rpm
MD5: 74a1075c87fc44ff0fa9a68e163c30e6
SHA-256: 44a2b4ab3c9a69159ee56bb484fe6af1764594f63b3bb9e1ec9eb28ac1529c37
Size: 79.87 kB - libkadm5-1.21.1-2.el9_4.x86_64.rpm
MD5: b6c22d038245e5b9d7f279bf47de1dbd
SHA-256: 9a5aacf5c7d58b2b48410b2dfa6daba609d5285ae66156a85c8b09b67b8138e8
Size: 75.99 kB