Issued:: 2024-08-13
Updated:: 2024-08-13

RHSA-2024:5316 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: krb5 security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for krb5 is now available for Red Hat Enterprise Linux 7.7 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the Kerberos key distribution center (KDC).

Security Fix(es):

krb5: GSS message token handling (CVE-2024-37371)
krb5: GSS message token handling (CVE-2024-37370)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 7.7 x86_64

Fixes

BZ - 2294676 - CVE-2024-37371 krb5: GSS message token handling
BZ - 2294677 - CVE-2024-37370 krb5: GSS message token handling

CVEs

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 7.7

SRPM
krb5-1.15.1-37.el7_7.4.src.rpm	SHA-256: aee5946e7e120cce6b31df2e40938f8b4da875d552c8352a495a3dac2f91915f
x86_64
krb5-debuginfo-1.15.1-37.el7_7.4.i686.rpm	SHA-256: cbb6b6394a87eb4867a3f9401a48e52479c4b7aec9b7749451b0fbabac6f701f
krb5-debuginfo-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: bcfd3aa1cd6d11f961a4f4cfa67ef7a650b701913e30feb23d711b951dbc9d2b
krb5-devel-1.15.1-37.el7_7.4.i686.rpm	SHA-256: d725cd924fb889b516512580790a8541cfdb4cfb1a83d548cfc7c9c9220674b1
krb5-devel-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: 6d73ff9d880e84eed814fc20ae6ef1039cbaba10d16d186380c46040a9e0b11f
krb5-libs-1.15.1-37.el7_7.4.i686.rpm	SHA-256: ab710ec0bd99f56786a0708429b6a86959259877d65b3bed647d63284808a9bc
krb5-libs-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: 33e5d1b03ae649f1bdcbab39d481c2510d614eca9ca6dc614f37dd8c1d399155
krb5-pkinit-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: 89e98d215f0221ff27cc3946f39dc6750224efe521f12c62a255859ff791016b
krb5-server-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: 54684f0e601a0a4d81f98f308fd8140fd49251d496a910fcdd08dfa18a8af462
krb5-server-ldap-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: 12dc8bdb81e246d7cba96a7d989c101d72063bb50eed888c411108ceda845574
krb5-workstation-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: 2efabbe05c231f9d675d0c8b7fefdbab940e3c5693bf5d72021335be36eae818
libkadm5-1.15.1-37.el7_7.4.i686.rpm	SHA-256: a406b44b790f04d04d3c82fe986c9f92d7bfcbc173d7b6c3d00f38d6c75ea4bc
libkadm5-1.15.1-37.el7_7.4.x86_64.rpm	SHA-256: c3394e3077350c2cf473a93872768601c2c87a7374b73a2235129108d39aede7

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation