[El-errata] ELSA-2025-9430 Moderate: Oracle Linux 9 krb5 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Jun 25 22:21:51 UTC 2025
Oracle Linux Security Advisory ELSA-2025-9430
http://linux.oracle.com/errata/ELSA-2025-9430.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
krb5-devel-1.21.1-8.0.1.el9_6.i686.rpm
krb5-devel-1.21.1-8.0.1.el9_6.x86_64.rpm
krb5-libs-1.21.1-8.0.1.el9_6.i686.rpm
krb5-libs-1.21.1-8.0.1.el9_6.x86_64.rpm
krb5-pkinit-1.21.1-8.0.1.el9_6.i686.rpm
krb5-pkinit-1.21.1-8.0.1.el9_6.x86_64.rpm
krb5-server-1.21.1-8.0.1.el9_6.i686.rpm
krb5-server-1.21.1-8.0.1.el9_6.x86_64.rpm
krb5-server-ldap-1.21.1-8.0.1.el9_6.i686.rpm
krb5-server-ldap-1.21.1-8.0.1.el9_6.x86_64.rpm
krb5-workstation-1.21.1-8.0.1.el9_6.x86_64.rpm
libkadm5-1.21.1-8.0.1.el9_6.i686.rpm
libkadm5-1.21.1-8.0.1.el9_6.x86_64.rpm
aarch64:
krb5-devel-1.21.1-8.0.1.el9_6.aarch64.rpm
krb5-libs-1.21.1-8.0.1.el9_6.aarch64.rpm
krb5-pkinit-1.21.1-8.0.1.el9_6.aarch64.rpm
krb5-server-1.21.1-8.0.1.el9_6.aarch64.rpm
krb5-server-ldap-1.21.1-8.0.1.el9_6.aarch64.rpm
krb5-workstation-1.21.1-8.0.1.el9_6.aarch64.rpm
libkadm5-1.21.1-8.0.1.el9_6.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/krb5-1.21.1-8.0.1.el9_6.src.rpm
Related CVEs:
CVE-2025-3576
Description of changes:
[1.21.1-8.0.1]
- Fixed race condition in krb5_set_password() [Orabug: 33609767]
[1.21.1-9]
- Do not block HMAC-MD4/5 in FIPS mode
Resolves: RHEL-88704
- Don't issue RC4 session keys by default (CVE-2025-3576)
Resolves: RHEL-88048
- Add PKINIT paChecksum2 from MS-PKCA v20230920
Resolves: RHEL-82647
[1.21.1-7]
- Add dedicated tests sub-package
More information about the El-errata
mailing list