What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-5983
2009-06-15 21:58:09
--------------------------------------------------------------------------------

Name        : pam_krb5
Product     : Fedora 11
Version     : 2.3.5
Release     : 1.fc11
URL         : https://fedorahosted.org/pam_krb5/
Summary     : A Pluggable Authentication Module for Kerberos 5.
Description :
This is pam_krb5, a pluggable authentication module that can be used with
Linux-PAM and Kerberos 5. This module supports password checking, ticket
creation, and optional TGT verification and conversion to Kerberos IV tickets.
The included pam_krb5afs module also gets AFS tokens if so configured.

--------------------------------------------------------------------------------
Update Information:

This updates the pam_krb5 package from version 2.3.4 to 2.3.5, fixing
CVE-2009-1384: in certain configurations, the password prompt could vary
depending on whether or not the user account was known to the system or the KDC.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 26 2009 Nalin Dahyabhai  - 2.3.5-1
- catch the case where we pass a NULL initial password into libkrb5 and
  it uses our callback to ask us for the password for the user using a
  principal name, and reject that (#502602)
- always prompt for a password unless we were told not to (#502602,
  CVE-2009-1384)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #502602 - CVE-2009-1384 pam_krb5: Password prompt varies for existent and non-existent users        https://bugzilla.redhat.com/show_bug.cgi?id=502602
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update pam_krb5' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 11 Update: pam_krb5-2.3.5-1.fc11

June 26, 2009
This updates the pam_krb5 package from version 2.3.4 to 2.3.5, fixing CVE-2009-1384: in certain configurations, the password prompt could vary depending on whether or not the user...

Summary

This is pam_krb5, a pluggable authentication module that can be used with

Linux-PAM and Kerberos 5. This module supports password checking, ticket

creation, and optional TGT verification and conversion to Kerberos IV tickets.

The included pam_krb5afs module also gets AFS tokens if so configured.

Update Information:

This updates the pam_krb5 package from version 2.3.4 to 2.3.5, fixing CVE-2009-1384: in certain configurations, the password prompt could vary depending on whether or not the user account was known to the system or the KDC.

Change Log

* Tue May 26 2009 Nalin Dahyabhai - 2.3.5-1 - catch the case where we pass a NULL initial password into libkrb5 and it uses our callback to ask us for the password for the user using a principal name, and reject that (#502602) - always prompt for a password unless we were told not to (#502602, CVE-2009-1384)

References

[ 1 ] Bug #502602 - CVE-2009-1384 pam_krb5: Password prompt varies for existent and non-existent users https://bugzilla.redhat.com/show_bug.cgi?id=502602

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update pam_krb5' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : pam_krb5
Product : Fedora 11
Version : 2.3.5
Release : 1.fc11
URL : https://fedorahosted.org/pam_krb5/
Summary : A Pluggable Authentication Module for Kerberos 5.

Related News

OpenSSL 3.2 Adds Support for TCP Fast Open on Linux, Argon2 KDF, and More

Nov 27, 2023

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Firefox 119 Starts to Roll Out Improved Firefox View Feature, Ramps Up Privacy and Security

Oct 25, 2023

Linux 6.7 Introduces "make hardening.config" To Help Build A Hardened Kernel

Nov 5, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo