Red Hat Product Errata RHSA-2008:0907 - Security Advisory
Issued:
2008-10-02
Updated:
2008-10-02

RHSA-2008:0907 - Security Advisory

Synopsis

Moderate: pam_krb5 security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An updated pam_krb5 package that fixes a security issue is now available
for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

Description

The pam_krb5 module allows Pluggable Authentication Modules (PAM) aware
applications to use Kerberos to verify user identities by obtaining user
credentials at log in time.

A flaw was found in the pam_krb5 "existing_ticket" configuration option. If
a system is configured to use an existing credential cache via the
"existing_ticket" option, it may be possible for a local user to gain
elevated privileges by using a different, local user's credential cache.
(CVE-2008-3825)

Red Hat would like to thank Stephane Bertin for responsibly disclosing this
issue.

Users of pam_krb5 should upgrade to this updated package, which contains a
backported patch to resolve this issue.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Affected Products

  • Red Hat Enterprise Linux Server 5 x86_64
  • Red Hat Enterprise Linux Server 5 ia64
  • Red Hat Enterprise Linux Server 5 i386
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.2 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.2 ia64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.2 i386
  • Red Hat Enterprise Linux Workstation 5 x86_64
  • Red Hat Enterprise Linux Workstation 5 i386
  • Red Hat Enterprise Linux Desktop 5 x86_64
  • Red Hat Enterprise Linux Desktop 5 i386
  • Red Hat Enterprise Linux for IBM z Systems 5 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.2 s390x
  • Red Hat Enterprise Linux for Power, big endian 5 ppc
  • Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.2 ppc
  • Red Hat Enterprise Linux Server from RHUI 5 x86_64
  • Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

  • BZ - 461960 - CVE-2008-3825 pam_krb5 existing_ticket permission flaw

Red Hat Enterprise Linux Server 5

SRPM
pam_krb5-2.2.14-1.el5_2.1.src.rpm SHA-256: 632a9597bafe58c8262b24d91a14ee1dd9327539fdf43bf6b27e7d62c5e4d0dc
x86_64
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682
pam_krb5-2.2.14-1.el5_2.1.x86_64.rpm SHA-256: 7b931c54ff27ce971d889ffa29bbdd93dcef87bd9f2e7dbb5adda2f0443e7e8a
ia64
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682
pam_krb5-2.2.14-1.el5_2.1.ia64.rpm SHA-256: 4f215a0e381fe8dae022311c3642f17e7f8d15d51b2efa7cd77b73e20d65fa72
i386
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682

Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.2

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Workstation 5

SRPM
pam_krb5-2.2.14-1.el5_2.1.src.rpm SHA-256: 632a9597bafe58c8262b24d91a14ee1dd9327539fdf43bf6b27e7d62c5e4d0dc
x86_64
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682
pam_krb5-2.2.14-1.el5_2.1.x86_64.rpm SHA-256: 7b931c54ff27ce971d889ffa29bbdd93dcef87bd9f2e7dbb5adda2f0443e7e8a
i386
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682

Red Hat Enterprise Linux Desktop 5

SRPM
pam_krb5-2.2.14-1.el5_2.1.src.rpm SHA-256: 632a9597bafe58c8262b24d91a14ee1dd9327539fdf43bf6b27e7d62c5e4d0dc
x86_64
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682
pam_krb5-2.2.14-1.el5_2.1.x86_64.rpm SHA-256: 7b931c54ff27ce971d889ffa29bbdd93dcef87bd9f2e7dbb5adda2f0443e7e8a
i386
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
pam_krb5-2.2.14-1.el5_2.1.src.rpm SHA-256: 632a9597bafe58c8262b24d91a14ee1dd9327539fdf43bf6b27e7d62c5e4d0dc
s390x
pam_krb5-2.2.14-1.el5_2.1.s390.rpm SHA-256: 26e5db2a748b7e6d91bbe85c0ffb7cef50eebb0dbd69115eba9edd8f4dcbcda4
pam_krb5-2.2.14-1.el5_2.1.s390x.rpm SHA-256: 81b7186144711cd7e99a46bd522ff0a9b9f79797d350ca5550ad6f18fab97f60

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.2

SRPM
s390x

Red Hat Enterprise Linux for Power, big endian 5

SRPM
pam_krb5-2.2.14-1.el5_2.1.src.rpm SHA-256: 632a9597bafe58c8262b24d91a14ee1dd9327539fdf43bf6b27e7d62c5e4d0dc
ppc
pam_krb5-2.2.14-1.el5_2.1.ppc.rpm SHA-256: 12fc77e2fbf251f2c6514e088828252d11ca2b0588958b4de4ded2e3fcf7723f
pam_krb5-2.2.14-1.el5_2.1.ppc64.rpm SHA-256: 06666481a00e993da993f417af7ec82ccce8b22cad66df7cee9873038c408441

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.2

SRPM
ppc

Red Hat Enterprise Linux Server from RHUI 5

SRPM
pam_krb5-2.2.14-1.el5_2.1.src.rpm SHA-256: 632a9597bafe58c8262b24d91a14ee1dd9327539fdf43bf6b27e7d62c5e4d0dc
x86_64
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682
pam_krb5-2.2.14-1.el5_2.1.x86_64.rpm SHA-256: 7b931c54ff27ce971d889ffa29bbdd93dcef87bd9f2e7dbb5adda2f0443e7e8a
i386
pam_krb5-2.2.14-1.el5_2.1.i386.rpm SHA-256: 5e0d2d81a631d089153d3dbca17ea95f013af619759f0dd87cad17c17b4af682

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.