Fedora 11 Update: pam_krb5-2.3.5-1.fc11
Summary
This is pam_krb5, a pluggable authentication module that can be used with
Linux-PAM and Kerberos 5. This module supports password checking, ticket
creation, and optional TGT verification and conversion to Kerberos IV tickets.
The included pam_krb5afs module also gets AFS tokens if so configured.
Update Information:
This updates the pam_krb5 package from version 2.3.4 to 2.3.5, fixing CVE-2009-1384: in certain configurations, the password prompt could vary depending on whether or not the user account was known to the system or the KDC.
Change Log
* Tue May 26 2009 Nalin Dahyabhai
References
[ 1 ] Bug #502602 - CVE-2009-1384 pam_krb5: Password prompt varies for existent and non-existent users https://bugzilla.redhat.com/show_bug.cgi?id=502602
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update pam_krb5' at the command line. For more information, refer to "Managing Software with yum", available at .