Fedora 41: krb5 Update FEDORA-2025-3e5228ee23 Moderate: Buffer Overflow Fix
fedora
February 14, 2025
Prevent overflow when calculating ulog block size (CVE-2025-24528) Support PKCS11 EC client certs in PKINIT kdb5_util: fix DB entry flags on modification Add ECDH support for PKINI...
Summary
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of sending passwords over the network in unencrypted form.
Update Information:
Prevent overflow when calculating ulog block size (CVE-2025-24528) Support PKCS11 EC client certs in PKINIT kdb5_util: fix DB entry flags on modification Add ECDH support for PKINIT (RFC5349)
Change Log
* Tue Feb 11 2025 Julien Rische
References
[ 1 ] Bug #2214326 - [RFE] Add ECDH support for PKINIT (RFC5349) [fedora]
https://bugzilla.redhat.com/show_bug.cgi?id=2214326
[ 2 ] Bug #2336555 - kdb5_util: fix DB entry flags on modification [fedora]
https://bugzilla.redhat.com/show_bug.cgi?id=2336555
[ 3 ] Bug #2341962 - Support PKCS11 EC client certs in PKINIT [fedora]
https://bugzilla.redhat.com/show_bug.cgi?id=2341962
[ 4 ] Bug #2342811 - CVE-2025-24528 krb5: overflow when calculating ulog block size [fedora-41]
https://bugzilla.redhat.com/show_bug.cgi?id=2342811
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-3e5228ee23' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Name: krb5
Product: Fedora 41
Version: 1.21.3
Release: 4.fc41
Summary: The Kerberos network authentication system
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!