ELSA-2024-9474

ULN >
Oracle Linux Errata repository >
ELSA-2024-9474

ELSA-2024-9474 - krb5 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-11-20

Description

[1.21.1-4.0.1]
- Fixed race condition in krb5_set_password() [Orabug: 33609767]

[1.21.1-4]
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: RHEL-55423
- Fix various issues detected by static analysis
Resolves: RHEL-58216
- Remove RSA protocol for PKINIT
Resolves: RHEL-15323

Related CVEs

CVE-2024-3596

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	krb5-1.21.1-4.0.1.el9_5.src.rpm	054a4c59c81773c6b0cd0be86a1ec005	-	ol9_aarch64_appstream
	krb5-1.21.1-4.0.1.el9_5.src.rpm	054a4c59c81773c6b0cd0be86a1ec005	-	ol9_aarch64_baseos_latest
	krb5-1.21.1-4.0.1.el9_5.src.rpm	054a4c59c81773c6b0cd0be86a1ec005	-	ol9_aarch64_u5_baseos_patch
	krb5-devel-1.21.1-4.0.1.el9_5.aarch64.rpm	7c351ae3b2b4159ce812c32071042c4e	-	ol9_aarch64_appstream
	krb5-libs-1.21.1-4.0.1.el9_5.aarch64.rpm	fdf8e0301d4493ed8604368a52b0925d	-	ol9_aarch64_baseos_latest
	krb5-libs-1.21.1-4.0.1.el9_5.aarch64.rpm	fdf8e0301d4493ed8604368a52b0925d	-	ol9_aarch64_u5_baseos_patch
	krb5-pkinit-1.21.1-4.0.1.el9_5.aarch64.rpm	bdc2b80096ac5ec59658c61addfb5a55	-	ol9_aarch64_baseos_latest
	krb5-pkinit-1.21.1-4.0.1.el9_5.aarch64.rpm	bdc2b80096ac5ec59658c61addfb5a55	-	ol9_aarch64_u5_baseos_patch
	krb5-server-1.21.1-4.0.1.el9_5.aarch64.rpm	bd7c4cc2b92c3dd6015735b98da0e397	-	ol9_aarch64_baseos_latest
	krb5-server-1.21.1-4.0.1.el9_5.aarch64.rpm	bd7c4cc2b92c3dd6015735b98da0e397	-	ol9_aarch64_u5_baseos_patch
	krb5-server-ldap-1.21.1-4.0.1.el9_5.aarch64.rpm	c50b9280be4f5aaddb55f0b49dfd5d97	-	ol9_aarch64_baseos_latest
	krb5-server-ldap-1.21.1-4.0.1.el9_5.aarch64.rpm	c50b9280be4f5aaddb55f0b49dfd5d97	-	ol9_aarch64_u5_baseos_patch
	krb5-workstation-1.21.1-4.0.1.el9_5.aarch64.rpm	7e7d23d80df7719ef0b95a9d4c4a9ace	-	ol9_aarch64_baseos_latest
	krb5-workstation-1.21.1-4.0.1.el9_5.aarch64.rpm	7e7d23d80df7719ef0b95a9d4c4a9ace	-	ol9_aarch64_u5_baseos_patch
	libkadm5-1.21.1-4.0.1.el9_5.aarch64.rpm	4a3e9b0d46ec7eaf771ae4e8c0250e0e	-	ol9_aarch64_baseos_latest
	libkadm5-1.21.1-4.0.1.el9_5.aarch64.rpm	4a3e9b0d46ec7eaf771ae4e8c0250e0e	-	ol9_aarch64_u5_baseos_patch

Oracle Linux 9 (x86_64)	krb5-1.21.1-4.0.1.el9_5.src.rpm	054a4c59c81773c6b0cd0be86a1ec005	-	ol9_x86_64_appstream
	krb5-1.21.1-4.0.1.el9_5.src.rpm	054a4c59c81773c6b0cd0be86a1ec005	-	ol9_x86_64_baseos_latest
	krb5-1.21.1-4.0.1.el9_5.src.rpm	054a4c59c81773c6b0cd0be86a1ec005	-	ol9_x86_64_u5_baseos_patch
	krb5-devel-1.21.1-4.0.1.el9_5.i686.rpm	b6b92b97a63a49ced4cbfe8a1333955c	-	ol9_x86_64_appstream
	krb5-devel-1.21.1-4.0.1.el9_5.x86_64.rpm	6921a2c47c129cbdb43d6af0629d095e	-	ol9_x86_64_appstream
	krb5-libs-1.21.1-4.0.1.el9_5.i686.rpm	a949e70a239aa5878a50fef3c136c242	-	ol9_x86_64_baseos_latest
	krb5-libs-1.21.1-4.0.1.el9_5.i686.rpm	a949e70a239aa5878a50fef3c136c242	-	ol9_x86_64_u5_baseos_patch
	krb5-libs-1.21.1-4.0.1.el9_5.x86_64.rpm	d192a6058c040c24b4fe205b08e573b3	-	ol9_x86_64_baseos_latest
	krb5-libs-1.21.1-4.0.1.el9_5.x86_64.rpm	d192a6058c040c24b4fe205b08e573b3	-	ol9_x86_64_u5_baseos_patch
	krb5-pkinit-1.21.1-4.0.1.el9_5.i686.rpm	e6f1c2864c7037e3487d00ee73acdfca	-	ol9_x86_64_baseos_latest
	krb5-pkinit-1.21.1-4.0.1.el9_5.i686.rpm	e6f1c2864c7037e3487d00ee73acdfca	-	ol9_x86_64_u5_baseos_patch
	krb5-pkinit-1.21.1-4.0.1.el9_5.x86_64.rpm	690267ef18554a0ed2c2d86f159ba927	-	ol9_x86_64_baseos_latest
	krb5-pkinit-1.21.1-4.0.1.el9_5.x86_64.rpm	690267ef18554a0ed2c2d86f159ba927	-	ol9_x86_64_u5_baseos_patch
	krb5-server-1.21.1-4.0.1.el9_5.i686.rpm	fe21057440a1b5383cb13668587085f8	-	ol9_x86_64_baseos_latest
	krb5-server-1.21.1-4.0.1.el9_5.i686.rpm	fe21057440a1b5383cb13668587085f8	-	ol9_x86_64_u5_baseos_patch
	krb5-server-1.21.1-4.0.1.el9_5.x86_64.rpm	0d4098ec2916a634a51168d00583d3b2	-	ol9_x86_64_baseos_latest
	krb5-server-1.21.1-4.0.1.el9_5.x86_64.rpm	0d4098ec2916a634a51168d00583d3b2	-	ol9_x86_64_u5_baseos_patch
	krb5-server-ldap-1.21.1-4.0.1.el9_5.i686.rpm	dde4d2125dad1c6ee92ae0cda24afaba	-	ol9_x86_64_baseos_latest
	krb5-server-ldap-1.21.1-4.0.1.el9_5.i686.rpm	dde4d2125dad1c6ee92ae0cda24afaba	-	ol9_x86_64_u5_baseos_patch
	krb5-server-ldap-1.21.1-4.0.1.el9_5.x86_64.rpm	0e4c968d3cdda663bb75d239ad01a225	-	ol9_x86_64_baseos_latest
	krb5-server-ldap-1.21.1-4.0.1.el9_5.x86_64.rpm	0e4c968d3cdda663bb75d239ad01a225	-	ol9_x86_64_u5_baseos_patch
	krb5-workstation-1.21.1-4.0.1.el9_5.x86_64.rpm	4e8f03c6dca802da74367770f8bbdc8b	-	ol9_x86_64_baseos_latest
	krb5-workstation-1.21.1-4.0.1.el9_5.x86_64.rpm	4e8f03c6dca802da74367770f8bbdc8b	-	ol9_x86_64_u5_baseos_patch
	libkadm5-1.21.1-4.0.1.el9_5.i686.rpm	bce774ad40de708f63929c1af9d49ae2	-	ol9_x86_64_baseos_latest
	libkadm5-1.21.1-4.0.1.el9_5.i686.rpm	bce774ad40de708f63929c1af9d49ae2	-	ol9_x86_64_u5_baseos_patch
	libkadm5-1.21.1-4.0.1.el9_5.x86_64.rpm	c0e2e726b1ddb6645ed7974b90601343	-	ol9_x86_64_baseos_latest
	libkadm5-1.21.1-4.0.1.el9_5.x86_64.rpm	c0e2e726b1ddb6645ed7974b90601343	-	ol9_x86_64_u5_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

Oracle customers - enter a support request
Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691