[CLSA-2025:1755603427] Fix CVE(s): CVE-2025-3576
Type:
security
Severity:
Moderate
Release date:
2025-08-19 11:37:11 UTC
Description:
* SECURITY UPDATE: prevent spoofing vulnerability in GSSAPI-protected messages using RC4-HMAC-MD5 due to weaknesses in MD5 checksum design - debian/patches/CVE-2025-3576: don't issue session keys with deprecated enctypes. Updates tests. - CVE-2025-3576
Updated packages:
  • krb5-admin-server_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:e24f9e382b92ad3da03327facd7c5d3fdb19dbb2
  • krb5-doc_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_all.deb
    sha:5255cbddf7330dd4cb5e89e3014c256ade0137b5
  • krb5-gss-samples_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:3eb7c2e3d066353daa137d8c77bf558f29ef670c
  • krb5-k5tls_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:c9ef329a9a51b1ad3ed0447c7491b1643ce04a61
  • krb5-kdc_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:cf89611569d4dedd175de3090495e7121eed0890
  • krb5-kdc-ldap_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:1650eda75ba400233634f351905d34d4438ac56f
  • krb5-locales_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_all.deb
    sha:8b07c2f2ef76b64e85e9457c6c1485fd5fe8893f
  • krb5-multidev_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:a0ca953462969c6b8b4aa19910331b05cbeda995
  • krb5-otp_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:e4f9255da35573f88a3139ab24f735b4d8c98fea
  • krb5-pkinit_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:cd389effe1061765d590765bb2ade17d87597fa3
  • krb5-user_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:72d53d76c7becba4a048a0274ceaa471106279df
  • libgssapi-krb5-2_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:a208d3b58753b2508032c752802a16bfcd4b6951
  • libgssrpc4_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:0046d002ed8b20be403102a2bb57593d073e13c1
  • libk5crypto3_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:c03a94c9bd73c8c5b4bde29ce3608d529124f5cc
  • libkadm5clnt-mit9_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:f4fe4f337a036da5dd234018486a163295b89fd3
  • libkadm5srv-mit9_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:d6c161f934d8d7805f4606918e8d83aa4d0cfaa5
  • libkdb5-8_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:39855396003edac375de043db5d2f2352cc58a8e
  • libkrad-dev_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:ee4a8b0adc9f6cbc0a36ea88fb76dffa70293dcf
  • libkrad0_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:d3763c160770beaf7c48c6bf6ca586b3f8667ef6
  • libkrb5-3_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:019c851a5759c1b9cf36dfe66a1e686ed3508008
  • libkrb5-dev_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:16ba8145aac3842dd1498891d814d24421d2b051
  • libkrb5support0_1.13.2+dfsg-5ubuntu2.2+tuxcare.els6_amd64.deb
    sha:44ef0ab4c104e287e678ef2ddccb1951fb3dc85d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.