krb5-1.18.2-32.el8_10

エラータID: AXSA:2025-9977:03

Release date: 
Wednesday, June 4, 2025 - 16:00
Subject: 
krb5-1.18.2-32.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).

Security Fix(es):

* krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions (CVE-2025-3576)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-3576
A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. krb5-1.18.2-32.el8_10.src.rpm
    MD5: 001ef84d248e9fe459d74041cf5ab03b
    SHA-256: 911707dc0f8e7de77673a05869904c3c5656e812138b4fed727d600a747458aa
    Size: 9.92 MB

Asianux Server 8 for x86_64
  1. krb5-devel-1.18.2-32.el8_10.i686.rpm
    MD5: d2077e0c6875747e7432f0db099df005
    SHA-256: 904e089fb8d1726295f195aede791de0a945dd4422a88538a74456d55afc7560
    Size: 561.77 kB
  2. krb5-devel-1.18.2-32.el8_10.x86_64.rpm
    MD5: 77005454bfe87eff89bf2cf0fd14b354
    SHA-256: fd958bdd10e7ff3f47d2812e99ccd6c90be3a286312cc7247f04924c1fe057c5
    Size: 562.06 kB
  3. krb5-libs-1.18.2-32.el8_10.i686.rpm
    MD5: 5e4b9ec33e6947ba0c52c42d2f8a3f39
    SHA-256: 272d65adecc8baa39e92fa46d1856a1369ea41212e035d22b63653b1cf167cef
    Size: 909.41 kB
  4. krb5-libs-1.18.2-32.el8_10.x86_64.rpm
    MD5: b62d3afdd52527d656b4e4d503dcd8b6
    SHA-256: 6a9f4cc2ccd2ce63f5619280702f6da5ae08074e81827c2c4f4632551ce18ae3
    Size: 844.59 kB
  5. krb5-pkinit-1.18.2-32.el8_10.i686.rpm
    MD5: f15de19cbe848550c8fbee83807850ab
    SHA-256: c0da11541348639c5a3d3b22c3e61cc7de4b2f546da02c645499b949d7c5d1c8
    Size: 180.09 kB
  6. krb5-pkinit-1.18.2-32.el8_10.x86_64.rpm
    MD5: 6ba1e81ffe64f7ab2918a706d2a560cc
    SHA-256: d0a3dccba38ecb724a38219a7aa2ce916d35deed2ae34054272a721936375f86
    Size: 174.95 kB
  7. krb5-server-1.18.2-32.el8_10.i686.rpm
    MD5: 9220320c8532ca7391fb4b8175d7357e
    SHA-256: 75cf8c0b273ff5ff93fdfc0248e42c16d173bc944305365b55cc862cabf48e02
    Size: 1.09 MB
  8. krb5-server-1.18.2-32.el8_10.x86_64.rpm
    MD5: 6caee7c353a7ec9f786bc23a00b91322
    SHA-256: d301539df39e65d102268e90a3bb3f105449b286dcb608b41ef9fbb51d579b57
    Size: 1.07 MB
  9. krb5-server-ldap-1.18.2-32.el8_10.i686.rpm
    MD5: e4d00772b06ba770481f9b6dc55c3b6e
    SHA-256: 8a76971975dc0c213313ce3d404b3f0e397c0d6845d6ff6a1bb7c50f802490d2
    Size: 212.15 kB
  10. krb5-server-ldap-1.18.2-32.el8_10.x86_64.rpm
    MD5: 4717d51317a860eac5056411d8384f4f
    SHA-256: 804979211cd46f33687a2598e209c54d680b42dc1d26f8fc0be6a629367bd7c0
    Size: 206.44 kB
  11. krb5-workstation-1.18.2-32.el8_10.x86_64.rpm
    MD5: 5a0479255041982bbe75f1964d7ced12
    SHA-256: 51bf5cd5641c0d3f80df2d5644c72fc48db141477bee4867f0bada15f79bb53a
    Size: 958.56 kB
  12. libkadm5-1.18.2-32.el8_10.i686.rpm
    MD5: 54d70a5665bae16963b5059cc7e34297
    SHA-256: 6c4a5db1c4a16256423377b47067a71f9f4a7232ebc0c41d62c88e3edbb028c9
    Size: 192.29 kB
  13. libkadm5-1.18.2-32.el8_10.x86_64.rpm
    MD5: 5b529fb3f524348795eebdf397abcbb4
    SHA-256: 5df22836c04a112efeff06984de2ef30ebb6d0750816fef8221dc564900044df
    Size: 187.99 kB