krb5-1.18.2-32.el8_10
エラータID: AXSA:2025-9977:03
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).
Security Fix(es):
* krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions (CVE-2025-3576)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2025-3576
A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering.
Update packages.
A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering.
N/A
SRPMS
- krb5-1.18.2-32.el8_10.src.rpm
MD5: 001ef84d248e9fe459d74041cf5ab03b
SHA-256: 911707dc0f8e7de77673a05869904c3c5656e812138b4fed727d600a747458aa
Size: 9.92 MB
Asianux Server 8 for x86_64
- krb5-devel-1.18.2-32.el8_10.i686.rpm
MD5: d2077e0c6875747e7432f0db099df005
SHA-256: 904e089fb8d1726295f195aede791de0a945dd4422a88538a74456d55afc7560
Size: 561.77 kB - krb5-devel-1.18.2-32.el8_10.x86_64.rpm
MD5: 77005454bfe87eff89bf2cf0fd14b354
SHA-256: fd958bdd10e7ff3f47d2812e99ccd6c90be3a286312cc7247f04924c1fe057c5
Size: 562.06 kB - krb5-libs-1.18.2-32.el8_10.i686.rpm
MD5: 5e4b9ec33e6947ba0c52c42d2f8a3f39
SHA-256: 272d65adecc8baa39e92fa46d1856a1369ea41212e035d22b63653b1cf167cef
Size: 909.41 kB - krb5-libs-1.18.2-32.el8_10.x86_64.rpm
MD5: b62d3afdd52527d656b4e4d503dcd8b6
SHA-256: 6a9f4cc2ccd2ce63f5619280702f6da5ae08074e81827c2c4f4632551ce18ae3
Size: 844.59 kB - krb5-pkinit-1.18.2-32.el8_10.i686.rpm
MD5: f15de19cbe848550c8fbee83807850ab
SHA-256: c0da11541348639c5a3d3b22c3e61cc7de4b2f546da02c645499b949d7c5d1c8
Size: 180.09 kB - krb5-pkinit-1.18.2-32.el8_10.x86_64.rpm
MD5: 6ba1e81ffe64f7ab2918a706d2a560cc
SHA-256: d0a3dccba38ecb724a38219a7aa2ce916d35deed2ae34054272a721936375f86
Size: 174.95 kB - krb5-server-1.18.2-32.el8_10.i686.rpm
MD5: 9220320c8532ca7391fb4b8175d7357e
SHA-256: 75cf8c0b273ff5ff93fdfc0248e42c16d173bc944305365b55cc862cabf48e02
Size: 1.09 MB - krb5-server-1.18.2-32.el8_10.x86_64.rpm
MD5: 6caee7c353a7ec9f786bc23a00b91322
SHA-256: d301539df39e65d102268e90a3bb3f105449b286dcb608b41ef9fbb51d579b57
Size: 1.07 MB - krb5-server-ldap-1.18.2-32.el8_10.i686.rpm
MD5: e4d00772b06ba770481f9b6dc55c3b6e
SHA-256: 8a76971975dc0c213313ce3d404b3f0e397c0d6845d6ff6a1bb7c50f802490d2
Size: 212.15 kB - krb5-server-ldap-1.18.2-32.el8_10.x86_64.rpm
MD5: 4717d51317a860eac5056411d8384f4f
SHA-256: 804979211cd46f33687a2598e209c54d680b42dc1d26f8fc0be6a629367bd7c0
Size: 206.44 kB - krb5-workstation-1.18.2-32.el8_10.x86_64.rpm
MD5: 5a0479255041982bbe75f1964d7ced12
SHA-256: 51bf5cd5641c0d3f80df2d5644c72fc48db141477bee4867f0bada15f79bb53a
Size: 958.56 kB - libkadm5-1.18.2-32.el8_10.i686.rpm
MD5: 54d70a5665bae16963b5059cc7e34297
SHA-256: 6c4a5db1c4a16256423377b47067a71f9f4a7232ebc0c41d62c88e3edbb028c9
Size: 192.29 kB - libkadm5-1.18.2-32.el8_10.x86_64.rpm
MD5: 5b529fb3f524348795eebdf397abcbb4
SHA-256: 5df22836c04a112efeff06984de2ef30ebb6d0750816fef8221dc564900044df
Size: 187.99 kB
日本語