stable

krb5-1.21.3-1.fc39

FEDORA-2024-df2c70dba9 created by jrische a year ago for Fedora 39

This update fixes multiple CVEs and rebases to the latest upstream version:

* Tue Jul 09 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
- New upstream version (1.21.3)
- CVE-2024-26458: Memory leak in src/lib/rpc/pmap_rmt.c
  Resolves: rhbz#2266732
- CVE-2024-26461: Memory leak in src/lib/gssapi/krb5/k5sealv3.c
  Resolves: rhbz#2266741
- CVE-2024-26462: Memory leak in src/kdc/ndr.c
  Resolves: rhbz#2266743
- Add missing SPDX license identifiers
  Resolves: rhbz#2265333

* Mon Jul 08 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
- CVE-2024-37370 CVE-2024-37371: GSS message token handling
  Resolves: rhbz#2294678 rhbz#2294680
- Fix double free in klist's show_ccache()
  Resolves: rhbz#2257301
- Do not include files with "~" termination in krb5-tests

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-df2c70dba9

This update has been submitted for testing by jrische.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'passed'.

a year ago

This update has been pushed to testing.

a year ago
User Icon filiperosset commented & provided feedback a year ago
karma

no regressions noted

User Icon abbra commented & provided feedback 12 months ago
karma

FreeIPA tests passed successfully.

This update can be pushed to stable now if the maintainer wishes

12 months ago

This update has been submitted for stable by abbra.

12 months ago

This update has been pushed to stable.

12 months ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
a year ago
in testing
a year ago
in stable
12 months ago
Builds
1
krb5-1.21.3-1.fc39
BZ#2257301 Fix double free in klist's show_ccache() [fedora-all]
0
0
BZ#2265333 Exhaustive SPDX license expression in specfile
0
0
BZ#2266732 TRIAGE CVE-2024-26458 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c [fedora-all]
0
0
BZ#2266741 TRIAGE CVE-2024-26461 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c [fedora-all]
0
0
BZ#2266743 TRIAGE CVE-2024-26462 krb5: Memory leak at /krb5/src/kdc/ndr.c [fedora-all]
0
0
BZ#2294678 CVE-2024-37370 krb5: GSS message token handling [fedora-all]
0
0
BZ#2294680 CVE-2024-37371 krb5: GSS message token handling [fedora-all]
0
0
krb5-1.21.3-1.fc39

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-2-ddv8m.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy