Advisory: CLSA-2025:1755113592
OS: Ubuntu 18.04 ELS
Public date: 2025-08-13 19:33:15.918399
Project: krb5
Version: 1.16-2ubuntu0.4+tuxcare.els5
Errata link: https://errata.tuxcare.com/els_os/ubuntu18.04els/CLSA-2025-1755113592.html
* SECURITY UPDATE: prevent spoofing vulnerability in GSSAPI-protected messages using RC4-HMAC-MD5 due to weaknesses in MD5 checksum design - debian/patches/CVE-2025-3576: don't issue session keys with deprecated enctypes. Updates tests. - CVE-2025-3576
Update command: apt-get update apt-get --only-upgrade install krb5*
krb5-admin-server_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-doc_1.16-2ubuntu0.4+tuxcare.els5_all.deb krb5-gss-samples_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-k5tls_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-kdc_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-kdc-ldap_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-kpropd_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-locales_1.16-2ubuntu0.4+tuxcare.els5_all.deb krb5-multidev_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-otp_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-pkinit_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb krb5-user_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libgssapi-krb5-2_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libgssrpc4_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libk5crypto3_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkadm5clnt-mit11_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkadm5srv-mit11_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkdb5-9_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkrad-dev_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkrad0_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkrb5-3_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkrb5-dev_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb libkrb5support0_1.16-2ubuntu0.4+tuxcare.els5_amd64.deb