krb5-1.21.1-8.el9_6
エラータID: AXSA:2025-10565:05
Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).
Security Fix(es):
* krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions (CVE-2025-3576)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2025-3576
A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering.
Update packages.
A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering.
N/A
SRPMS
- krb5-1.21.1-8.el9_6.src.rpm
MD5: 9914541bff2facd6a50b007a981e2ea1
SHA-256: 8a1f5df6c32ef2fb450ac0e782a212719682dd3cde0372f3274325af3e15d6ed
Size: 8.53 MB
Asianux Server 9 for x86_64
- krb5-devel-1.21.1-8.el9_6.i686.rpm
MD5: 55a5e85111a50295662eb83acc56abd7
SHA-256: e7886e607cad62087afcb8e686d3cf236d2a76878c0b7e5e067977215f2570da
Size: 144.73 kB - krb5-devel-1.21.1-8.el9_6.x86_64.rpm
MD5: f2473482e4379890d3d3f1329f0902f4
SHA-256: 7cdf51ba4fbe6a32ccc650a25406d6f64fd5249745f8ef91d9e29dfb4db47d91
Size: 144.78 kB - krb5-libs-1.21.1-8.el9_6.i686.rpm
MD5: b79291cf0cba97a2d4a2bd6773a08fc8
SHA-256: ef7b445b6fb7ab76999a93d79b887a4b67cb93c14b594f3aa5ed1f2407536f23
Size: 811.02 kB - krb5-libs-1.21.1-8.el9_6.x86_64.rpm
MD5: c07120da43518f85529d8f2371381f72
SHA-256: 2a34e7a5ec803cf0ab03eb6f1dacfa32fc09e61ac732ab2329a8657d7274af1f
Size: 761.94 kB - krb5-pkinit-1.21.1-8.el9_6.i686.rpm
MD5: ca73dbbc93535ed2922692eb059a4d56
SHA-256: 6b3b3f229fb3ccb271341826ba3065f1cfc43f6e5bd5a379e7f6fb7279268b2a
Size: 62.86 kB - krb5-pkinit-1.21.1-8.el9_6.x86_64.rpm
MD5: 4a50fe95aa0e3c79962043d3a889c6ed
SHA-256: f413fc9e8469ca06b769bd216787a107c2599ab6f430911ce95e1c0f929b0261
Size: 57.30 kB - krb5-server-1.21.1-8.el9_6.i686.rpm
MD5: 017ca99478e38236a0090f1e64af76c3
SHA-256: 8fedf9cb477a6c5eac3f314023f81465f5c6094e945a53a811ce6d791d5dc8ba
Size: 315.49 kB - krb5-server-1.21.1-8.el9_6.x86_64.rpm
MD5: 8c1771b17534977f1fadfbefb6812cf1
SHA-256: 5c57e03a2b1990829feb2c0637eb619e8e9e4897271f1bdeaac65b3937b98ebc
Size: 302.59 kB - krb5-server-ldap-1.21.1-8.el9_6.i686.rpm
MD5: 1bcf2424d648d14205912752044ae560
SHA-256: 252d9c453e9652c3d5b4b1f52b8589cb395f0a211aed40c882c7eabfbb75046d
Size: 93.52 kB - krb5-server-ldap-1.21.1-8.el9_6.x86_64.rpm
MD5: afaa6e97567897000d588b95f6947706
SHA-256: d4fcb4de567c86bdf177b3859e8bb7888a319167cf1da64e0f4d4d1fde52ab07
Size: 88.99 kB - krb5-workstation-1.21.1-8.el9_6.x86_64.rpm
MD5: 62991cc813d9b0f0a7109856495e5787
SHA-256: 845a92fc7dbbaa9b4e7c490db32e3ada73008ccdac2f8b5a36d6ca53d6eebf0b
Size: 532.67 kB - libkadm5-1.21.1-8.el9_6.i686.rpm
MD5: 9aee3958cdbca384942d81ca699caecc
SHA-256: 7f3e1e9702fb5c1db8b0b8b57f7fe7fdb4e1a0112339eda28e78abaf7b773784
Size: 79.61 kB - libkadm5-1.21.1-8.el9_6.x86_64.rpm
MD5: 510b4c85eca2ded32bcc147e17824778
SHA-256: f075e902b06fc7097e0b05310b78960273ffb74a621ae9a094465546a9f684a3
Size: 75.46 kB
日本語