[CLSA-2025:1755113592] Fix CVE(s): CVE-2025-3576
Type:
security
Severity:
Moderate
Release date:
2025-08-13 19:33:16 UTC
Description:
* SECURITY UPDATE: prevent spoofing vulnerability in GSSAPI-protected messages using RC4-HMAC-MD5 due to weaknesses in MD5 checksum design - debian/patches/CVE-2025-3576: don't issue session keys with deprecated enctypes. Updates tests. - CVE-2025-3576
Updated packages:
  • krb5-admin-server_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:eed10e31a01f945f19fe4c5e472d964d637bb610
  • krb5-doc_1.16-2ubuntu0.4+tuxcare.els5_all.deb
    sha:9fc673fb2a27dc6ed054ac8aeacfc28aef0dab07
  • krb5-gss-samples_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:81170513421d3243ca52d15c14e2ed7970cde9c8
  • krb5-k5tls_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:d981fbf27c292dd0eb302bb4cf89235eb23011f9
  • krb5-kdc_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:e1bad0c3dd342e1633bfeac810b188316b6c54c6
  • krb5-kdc-ldap_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:992259f1523e81ff77f8d6bc79d025a24b7ebe6a
  • krb5-kpropd_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:f5e1d6db39d4d2dc717c085dd038f97c07c072ec
  • krb5-locales_1.16-2ubuntu0.4+tuxcare.els5_all.deb
    sha:61625fb283d2658738893b3000ebf88429d6be1b
  • krb5-multidev_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:461fbc0698936d118cd3a9baeff0d3c7ef2720d2
  • krb5-otp_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:70bba7912caa1f1fe69d3017084c535179a94f22
  • krb5-pkinit_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:d45badb3c2770449b377b570f2d54b2ad09d0d3c
  • krb5-user_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:78623286515aab4cb5d49f1f85be4d177dd8d8af
  • libgssapi-krb5-2_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:b49b1b9672de1bede0e4424dc2f69c5eedbc0908
  • libgssrpc4_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:62430ef0a86e5760dd6c9ea7adb833297faa8e86
  • libk5crypto3_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:b5f5d38f376d903f2ffa5210de1a30e38deda157
  • libkadm5clnt-mit11_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:82a0ba0fd6e9346ffcef4b77cc4e445d8ffa2d47
  • libkadm5srv-mit11_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:7dd7b7b938b2b70273b3ce8e86cec4493604172f
  • libkdb5-9_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:d8bcfd9a6affce805a0245762350e5e11473f395
  • libkrad-dev_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:5d64ddf71ef283529f68f02b32761ada851b72eb
  • libkrad0_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:e25cde1effb4c90f83c4ddcf84fece97fd275f90
  • libkrb5-3_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:2c9eb748db5b62f5f127106af6e06c02319c647f
  • libkrb5-dev_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:7e9310b4e97a3c5bfa44c28b206d2b9e5a49b362
  • libkrb5support0_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb
    sha:ea97b1082ae5eacbd3bfafd1d3eddae287b2f054
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.