krb5-1.21.1-4.el9

エラータID: AXSA:2024-9084:07

Release date: 
Wednesday, December 11, 2024 - 16:55
Subject: 
krb5-1.21.1-4.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).

Security Fix(es):

* freeradius: forgery attack (CVE-2024-3596)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2024-3596
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.

Solution: 

Update packages.

CVEs: 
CVE-2024-3596
RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local attacker who can modify any valid Response (Access-Accept, Access-Reject, or Access-Challenge) to any other response using a chosen-prefix collision attack against MD5 Response Authenticator signature.
Additional Info: 

N/A

Download: 

SRPMS
  1. krb5-1.21.1-4.el9.src.rpm
    MD5: 7422a8cb077fb510658506cc44cf389c
    SHA-256: 7a28af8189375f3c5fe0e5b9b4f48da41ca3567dc3f4ed5d0c9eee2f6fe79149
    Size: 8.44 MB

Asianux Server 9 for x86_64
  1. krb5-devel-1.21.1-4.el9.i686.rpm
    MD5: b88d2f5b02b82080d0fdb08e8fa555e9
    SHA-256: c8d28b11b491f4910d97716f03eea6a161ae9356061cd492a668c2dc4f18c3f5
    Size: 145.33 kB
  2. krb5-devel-1.21.1-4.el9.x86_64.rpm
    MD5: 804b0c96e380f311f0b79084b777f290
    SHA-256: bc0eb78f7d32eba435ca0a77eeea4c97d853028d55ee50ba860ac115b3c8cc42
    Size: 145.40 kB
  3. krb5-libs-1.21.1-4.el9.i686.rpm
    MD5: 5bf6474ef128062383c4300ca4bb9d3e
    SHA-256: a29e497a4f91f3362a022cdfdb9289ce3b6d88ad08a9a7f03a0688e329e73ea1
    Size: 811.01 kB
  4. krb5-libs-1.21.1-4.el9.x86_64.rpm
    MD5: 332484b7857609e5da19b696601ba61a
    SHA-256: 09d885f59d51bd9c88ea7b76650e8d430a7a753215eca5f0dbec56f147f90d8b
    Size: 762.29 kB
  5. krb5-pkinit-1.21.1-4.el9.i686.rpm
    MD5: 1064ebe7bee34957450293293533be2e
    SHA-256: f94df19593298d904287f773ec897802bf671f95b1787e4032cc8f822c73035c
    Size: 60.86 kB
  6. krb5-pkinit-1.21.1-4.el9.x86_64.rpm
    MD5: 8e25389ddc4b486a526a073f7c02a954
    SHA-256: 3ea39db34bb7f0bdbe5e38ff46b8f1443d0919c19c6a8001afa0364cf3c36784
    Size: 55.71 kB
  7. krb5-server-1.21.1-4.el9.i686.rpm
    MD5: 3de002360e5e6e8d302f2512835c5f9b
    SHA-256: 97dafe8c36ce84abf7f7d7b5f79c1ff433ddf4a95fbb442e221eaf52cac33e9e
    Size: 315.58 kB
  8. krb5-server-1.21.1-4.el9.x86_64.rpm
    MD5: 775edb35d6b7f515c3b70df1781c3c83
    SHA-256: 6aeeb6c3c0e2872c640889e182be4008d6ec203a549885f89556b9fc776efb0e
    Size: 303.35 kB
  9. krb5-server-ldap-1.21.1-4.el9.i686.rpm
    MD5: a80e94cb34543620311ab1c379234d0c
    SHA-256: eb114c9e0eb9340b74d2ed938f81f9cdda7abacb2ecb7213238c1735034ffdd3
    Size: 94.11 kB
  10. krb5-server-ldap-1.21.1-4.el9.x86_64.rpm
    MD5: e95ac3f4833d2ad845e93d8ad1aab3a3
    SHA-256: d9b228fc16824571ea159a05a1063fba2f6a8f9eb79f5226ebc31061d27b0fe3
    Size: 89.61 kB
  11. krb5-workstation-1.21.1-4.el9.x86_64.rpm
    MD5: 13404cf75e15a013f6e9e686a36389f2
    SHA-256: ffbe4cc9e73d4a77a5e2f5519f869935fc92f0081248924f472b1a4d8b4f437f
    Size: 532.92 kB
  12. libkadm5-1.21.1-4.el9.i686.rpm
    MD5: 1bc16fbb4a2bb060d511106e763bda85
    SHA-256: e10de055798296aa5e12e6851360c2b3cb1001020ae0417616889ecb62b23fed
    Size: 80.06 kB
  13. libkadm5-1.21.1-4.el9.x86_64.rpm
    MD5: 16008e2771a34aadf614872a9940e893
    SHA-256: 0572452e7c5dbbefc0a9344c53dd9a343c4ed2700b81eb07e816cec86418767d
    Size: 76.18 kB