- Issued:
- 2010-07-14
- Updated:
- 2010-07-14
RHBA-2010:0529 - Bug Fix Advisory
Synopsis
pam_krb5 bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated pam_krb5 package is now available.
Description
The pam_krb5 module allows Pluggable Authentication Modules (PAM) aware
applications to use Kerberos to verify user identities by obtaining user
credentials at log in time.
- previously, when a user provided a correct but expired password to log in, the
calling application would not prompt the user for a new password. Instead, the
module would attempt to reset the password to the user's now expired password.
This issue is now resolved and the user is prompted to create a new password.
(BZ#598926)
Users of pam_krb5 are advised to upgrade to this updated package, which resolves
this issue.
Solution
Before applying this update, make sure all previously-released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8 x86_64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8 ia64
- Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390x
- Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
- Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8 ppc
Fixes
- BZ - 598926 - pam_krb5 on rhel4 uses the old password to change users's password when user's password expires during login
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 4
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| x86_64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.x86_64.rpm | SHA-256: 5bfb4cb007722910cd58ccd409e590c7c6830ec3904ed0c24791af15180da99b |
| pam_krb5-2.1.17-8.el4_8.1.x86_64.rpm | SHA-256: 5bfb4cb007722910cd58ccd409e590c7c6830ec3904ed0c24791af15180da99b |
| ia64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.ia64.rpm | SHA-256: e85eca3c04cb9711fe853e87062b07c61484130e01f689771b478c1aa6971ce3 |
| pam_krb5-2.1.17-8.el4_8.1.ia64.rpm | SHA-256: e85eca3c04cb9711fe853e87062b07c61484130e01f689771b478c1aa6971ce3 |
| i386 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 4.8
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| x86_64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.x86_64.rpm | SHA-256: 5bfb4cb007722910cd58ccd409e590c7c6830ec3904ed0c24791af15180da99b |
| pam_krb5-2.1.17-8.el4_8.1.x86_64.rpm | SHA-256: 5bfb4cb007722910cd58ccd409e590c7c6830ec3904ed0c24791af15180da99b |
| ia64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.ia64.rpm | SHA-256: e85eca3c04cb9711fe853e87062b07c61484130e01f689771b478c1aa6971ce3 |
| pam_krb5-2.1.17-8.el4_8.1.ia64.rpm | SHA-256: e85eca3c04cb9711fe853e87062b07c61484130e01f689771b478c1aa6971ce3 |
| i386 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
Red Hat Enterprise Linux Workstation 4
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| x86_64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.x86_64.rpm | SHA-256: 5bfb4cb007722910cd58ccd409e590c7c6830ec3904ed0c24791af15180da99b |
| ia64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.ia64.rpm | SHA-256: e85eca3c04cb9711fe853e87062b07c61484130e01f689771b478c1aa6971ce3 |
| i386 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
Red Hat Enterprise Linux Desktop 4
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| x86_64 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
| pam_krb5-2.1.17-8.el4_8.1.x86_64.rpm | SHA-256: 5bfb4cb007722910cd58ccd409e590c7c6830ec3904ed0c24791af15180da99b |
| i386 | |
| pam_krb5-2.1.17-8.el4_8.1.i386.rpm | SHA-256: ecd31ddc463b45e68aa6d690036acc4d62b486398dbf4ea9264befcf6d160182 |
Red Hat Enterprise Linux for IBM z Systems 4
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| s390x | |
| pam_krb5-2.1.17-8.el4_8.1.s390.rpm | SHA-256: 76f63f8edad677df640e3c039a4038fa2c900ac258b239a3ac4da5042ab5b9ba |
| pam_krb5-2.1.17-8.el4_8.1.s390x.rpm | SHA-256: f983b1813dc4e06a17b6a0b0e37e3974c60a6b5a5fb964df2a56f96c4a0dbb41 |
| s390 | |
| pam_krb5-2.1.17-8.el4_8.1.s390.rpm | SHA-256: 76f63f8edad677df640e3c039a4038fa2c900ac258b239a3ac4da5042ab5b9ba |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| s390x | |
| pam_krb5-2.1.17-8.el4_8.1.s390.rpm | SHA-256: 76f63f8edad677df640e3c039a4038fa2c900ac258b239a3ac4da5042ab5b9ba |
| pam_krb5-2.1.17-8.el4_8.1.s390x.rpm | SHA-256: f983b1813dc4e06a17b6a0b0e37e3974c60a6b5a5fb964df2a56f96c4a0dbb41 |
| s390 | |
| pam_krb5-2.1.17-8.el4_8.1.s390.rpm | SHA-256: 76f63f8edad677df640e3c039a4038fa2c900ac258b239a3ac4da5042ab5b9ba |
Red Hat Enterprise Linux for Power, big endian 4
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| ppc | |
| pam_krb5-2.1.17-8.el4_8.1.ppc.rpm | SHA-256: 412defe17279654697f28d52b4d50817ef5589e816a90b254137bc30d7a2ad74 |
| pam_krb5-2.1.17-8.el4_8.1.ppc64.rpm | SHA-256: 7c81723d1e8fcf59c46287bc60dc5af3ee51a0f8f74ce4f42c5f639f1d3e9e28 |
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8
| SRPM | |
|---|---|
| pam_krb5-2.1.17-8.el4_8.1.src.rpm | SHA-256: b962d066df5976b6d733a641f19b97cdd5953f14bb47bb0f36a2a03a08f9b92f |
| ppc | |
| pam_krb5-2.1.17-8.el4_8.1.ppc.rpm | SHA-256: 412defe17279654697f28d52b4d50817ef5589e816a90b254137bc30d7a2ad74 |
| pam_krb5-2.1.17-8.el4_8.1.ppc64.rpm | SHA-256: 7c81723d1e8fcf59c46287bc60dc5af3ee51a0f8f74ce4f42c5f639f1d3e9e28 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
