ELSA-2024-9474

ULN >
Oracle Linux Errata repository >
ELSA-2024-9474

ELSA-2024-9474 - krb5 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-11-20

Description

[1.21.1-4.0.1]
- Fixed race condition in krb5_set_password() [Orabug: 33609767]

[1.21.1-4]
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: RHEL-55423
- Fix various issues detected by static analysis
Resolves: RHEL-58216
- Remove RSA protocol for PKINIT
Resolves: RHEL-15323

Related CVEs

CVE-2024-3596

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	krb5-1.21.1-4.0.1.el9_5.src.rpm	299870f682a6c8ee6e2c3c9d8746d2820bb66d67682ce6fd4cddfbcbdaef878b	-	ol9_aarch64_appstream
	krb5-1.21.1-4.0.1.el9_5.src.rpm	299870f682a6c8ee6e2c3c9d8746d2820bb66d67682ce6fd4cddfbcbdaef878b	-	ol9_aarch64_baseos_latest
	krb5-1.21.1-4.0.1.el9_5.src.rpm	299870f682a6c8ee6e2c3c9d8746d2820bb66d67682ce6fd4cddfbcbdaef878b	-	ol9_aarch64_u5_baseos_patch
	krb5-devel-1.21.1-4.0.1.el9_5.aarch64.rpm	42bfec27081b0e9b9e0543c24a11928b79cdd5804f88552c1c24a67241565a4f	-	ol9_aarch64_appstream
	krb5-libs-1.21.1-4.0.1.el9_5.aarch64.rpm	333e9c8cd51147e1e787040e86858b6d597dc60f7642f9bd5fdf73d4ccb96b95	-	ol9_aarch64_baseos_latest
	krb5-libs-1.21.1-4.0.1.el9_5.aarch64.rpm	333e9c8cd51147e1e787040e86858b6d597dc60f7642f9bd5fdf73d4ccb96b95	-	ol9_aarch64_u5_baseos_patch
	krb5-pkinit-1.21.1-4.0.1.el9_5.aarch64.rpm	c1ce1992b1516f3f1f0e0180cb0972d36d68e27e4b64d0c79aa1f01c6698fd02	-	ol9_aarch64_baseos_latest
	krb5-pkinit-1.21.1-4.0.1.el9_5.aarch64.rpm	c1ce1992b1516f3f1f0e0180cb0972d36d68e27e4b64d0c79aa1f01c6698fd02	-	ol9_aarch64_u5_baseos_patch
	krb5-server-1.21.1-4.0.1.el9_5.aarch64.rpm	3595b3646b69a228f2cfc7e39048898314e0c842d0e0da28f87efc82137a630b	-	ol9_aarch64_baseos_latest
	krb5-server-1.21.1-4.0.1.el9_5.aarch64.rpm	3595b3646b69a228f2cfc7e39048898314e0c842d0e0da28f87efc82137a630b	-	ol9_aarch64_u5_baseos_patch
	krb5-server-ldap-1.21.1-4.0.1.el9_5.aarch64.rpm	7eb2726624bafef7dfbcc5ee58014a804de25f24d3ade5ce72cebd33b29dbec8	-	ol9_aarch64_baseos_latest
	krb5-server-ldap-1.21.1-4.0.1.el9_5.aarch64.rpm	7eb2726624bafef7dfbcc5ee58014a804de25f24d3ade5ce72cebd33b29dbec8	-	ol9_aarch64_u5_baseos_patch
	krb5-workstation-1.21.1-4.0.1.el9_5.aarch64.rpm	6b7dbd20329227bc4979dafe568a9d256c673a21c991204df34725898f39e506	-	ol9_aarch64_baseos_latest
	krb5-workstation-1.21.1-4.0.1.el9_5.aarch64.rpm	6b7dbd20329227bc4979dafe568a9d256c673a21c991204df34725898f39e506	-	ol9_aarch64_u5_baseos_patch
	libkadm5-1.21.1-4.0.1.el9_5.aarch64.rpm	ed2c1e4ef3dd7ddd91ddac48fbefb08b20fe4d8715f3355b14eab49eb8414620	-	ol9_aarch64_baseos_latest
	libkadm5-1.21.1-4.0.1.el9_5.aarch64.rpm	ed2c1e4ef3dd7ddd91ddac48fbefb08b20fe4d8715f3355b14eab49eb8414620	-	ol9_aarch64_u5_baseos_patch

Oracle Linux 9 (x86_64)	krb5-1.21.1-4.0.1.el9_5.src.rpm	299870f682a6c8ee6e2c3c9d8746d2820bb66d67682ce6fd4cddfbcbdaef878b	-	ol9_x86_64_appstream
	krb5-1.21.1-4.0.1.el9_5.src.rpm	299870f682a6c8ee6e2c3c9d8746d2820bb66d67682ce6fd4cddfbcbdaef878b	-	ol9_x86_64_baseos_latest
	krb5-1.21.1-4.0.1.el9_5.src.rpm	299870f682a6c8ee6e2c3c9d8746d2820bb66d67682ce6fd4cddfbcbdaef878b	-	ol9_x86_64_u5_baseos_patch
	krb5-devel-1.21.1-4.0.1.el9_5.i686.rpm	06bbf8bd15d1959fd32f4b469c7b672ec36e72b1a54ba783b5d3173ca88a72af	-	ol9_x86_64_appstream
	krb5-devel-1.21.1-4.0.1.el9_5.x86_64.rpm	b66be2594928d5648fd4f268659b50dc9098925fb96afa22f1554e6268754390	-	ol9_x86_64_appstream
	krb5-libs-1.21.1-4.0.1.el9_5.i686.rpm	000b9fe3a2244af846cf28dc52752b6250fa6e5ca6dda552ab579cd591ac5fa2	-	ol9_x86_64_baseos_latest
	krb5-libs-1.21.1-4.0.1.el9_5.i686.rpm	000b9fe3a2244af846cf28dc52752b6250fa6e5ca6dda552ab579cd591ac5fa2	-	ol9_x86_64_u5_baseos_patch
	krb5-libs-1.21.1-4.0.1.el9_5.x86_64.rpm	d08ce1c441a19ba51975ba16761b7f8f0f6153511ca544be65c06834cc5f2370	-	ol9_x86_64_baseos_latest
	krb5-libs-1.21.1-4.0.1.el9_5.x86_64.rpm	d08ce1c441a19ba51975ba16761b7f8f0f6153511ca544be65c06834cc5f2370	-	ol9_x86_64_u5_baseos_patch
	krb5-pkinit-1.21.1-4.0.1.el9_5.i686.rpm	72192b784ce5b30e33d18a5e69b944d98223152ace423e32ced3b1ae4bc79361	-	ol9_x86_64_baseos_latest
	krb5-pkinit-1.21.1-4.0.1.el9_5.i686.rpm	72192b784ce5b30e33d18a5e69b944d98223152ace423e32ced3b1ae4bc79361	-	ol9_x86_64_u5_baseos_patch
	krb5-pkinit-1.21.1-4.0.1.el9_5.x86_64.rpm	974d67de0fa1759e791a8af62b39792e6fd370c1eb657e0d459d19cff89560c6	-	ol9_x86_64_baseos_latest
	krb5-pkinit-1.21.1-4.0.1.el9_5.x86_64.rpm	974d67de0fa1759e791a8af62b39792e6fd370c1eb657e0d459d19cff89560c6	-	ol9_x86_64_u5_baseos_patch
	krb5-server-1.21.1-4.0.1.el9_5.i686.rpm	a3dd0801c3dbc69ec22a9aae22d55fa2a3deac40d47b8a7251f6b1e8c4a05571	-	ol9_x86_64_baseos_latest
	krb5-server-1.21.1-4.0.1.el9_5.i686.rpm	a3dd0801c3dbc69ec22a9aae22d55fa2a3deac40d47b8a7251f6b1e8c4a05571	-	ol9_x86_64_u5_baseos_patch
	krb5-server-1.21.1-4.0.1.el9_5.x86_64.rpm	8bbe763a81d4e7fc2e69124c8b1685a43ff23644a463e385ed6addbf89813da7	-	ol9_x86_64_baseos_latest
	krb5-server-1.21.1-4.0.1.el9_5.x86_64.rpm	8bbe763a81d4e7fc2e69124c8b1685a43ff23644a463e385ed6addbf89813da7	-	ol9_x86_64_u5_baseos_patch
	krb5-server-ldap-1.21.1-4.0.1.el9_5.i686.rpm	0bc86a6a8b9cc251773bbc70fd904b98a19003522dce4b148681f60382e59079	-	ol9_x86_64_baseos_latest
	krb5-server-ldap-1.21.1-4.0.1.el9_5.i686.rpm	0bc86a6a8b9cc251773bbc70fd904b98a19003522dce4b148681f60382e59079	-	ol9_x86_64_u5_baseos_patch
	krb5-server-ldap-1.21.1-4.0.1.el9_5.x86_64.rpm	cca63cd73a3f9f6ee45fc32240b5ec6126207aa83144f920a45d7e19857147bf	-	ol9_x86_64_baseos_latest
	krb5-server-ldap-1.21.1-4.0.1.el9_5.x86_64.rpm	cca63cd73a3f9f6ee45fc32240b5ec6126207aa83144f920a45d7e19857147bf	-	ol9_x86_64_u5_baseos_patch
	krb5-workstation-1.21.1-4.0.1.el9_5.x86_64.rpm	80be7ddf1bc2336b6fcb5e34b6dc49c6ca3cf91c28cce8cf1bbe661d29bd88b1	-	ol9_x86_64_baseos_latest
	krb5-workstation-1.21.1-4.0.1.el9_5.x86_64.rpm	80be7ddf1bc2336b6fcb5e34b6dc49c6ca3cf91c28cce8cf1bbe661d29bd88b1	-	ol9_x86_64_u5_baseos_patch
	libkadm5-1.21.1-4.0.1.el9_5.i686.rpm	20f59bab21c9899cb1d24fa2540611e690a3e431ab3ee9f2e66a5483f8a2538c	-	ol9_x86_64_baseos_latest
	libkadm5-1.21.1-4.0.1.el9_5.i686.rpm	20f59bab21c9899cb1d24fa2540611e690a3e431ab3ee9f2e66a5483f8a2538c	-	ol9_x86_64_u5_baseos_patch
	libkadm5-1.21.1-4.0.1.el9_5.x86_64.rpm	343ffdfb8ae77bdffb78ac7137750e8ec6606432f3c4ff859e42523c3a2c9da1	-	ol9_x86_64_baseos_latest
	libkadm5-1.21.1-4.0.1.el9_5.x86_64.rpm	343ffdfb8ae77bdffb78ac7137750e8ec6606432f3c4ff859e42523c3a2c9da1	-	ol9_x86_64_u5_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691