Ubuntu Security Update USN-7257-1: Kerberos vulnerability

Thread starter LinuxBot
Start date Feb 5, 2025

LinuxBot

Member

Feb 5, 2025

#1

Goldberg, Miro Haller, Nadia Heninger, Mike Milano, Dan Shumow, Marc Stevens, and Adam Suhl discovered that Kerberos incorrectly authenticated certain responses. An attacker able to intercept communications between a RADIUS client and server could possibly use this issue to forge responses, bypass authentication, and access network devices and services. This update introduces support for the Message-Authenticator attribute in non-EAP authentication methods for communications between Kerberos and a RADIUS server.

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-7055-1: FreeRADIUS vulnerability

Replies: 0

Views: 489

Oct 3, 2024

LinuxBot

Ubuntu Security Update USN-7314-1: Kerberos vulnerabilities

Replies: 0

Views: 277

Mar 3, 2025

LinuxBot

Ubuntu Security Update USN-8065-1: Authlib vulnerabilities

Replies: 0

Views: 129

Feb 26, 2026

LinuxBot

Ubuntu Security Update USN-8375-1: nginx vulnerabilities

Replies: 0

Views: 46

Wednesday at 5:52 PM

LinuxBot

Ubuntu Security Update USN-8349-1: rsync vulnerabilities

Replies: 0

Views: 41

Monday at 12:12 PM

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 3,189 (members: 3, guests: 3,186)

Latest posts

D
Recording and transcribing a meeting to create meeting minutes
- Latest: deb_user
- 6 minutes ago
Linux Audio / Video
D
How a USB-connected speaker can infect a PC without ever being touched
- Latest: deb_user
- Today at 7:55 PM
General Computing
Hellooooo
- Latest: VP9KS
- Today at 5:15 PM
Member Introductions
S
How to Revert back my Live into regular drive?
- Latest: SEAPOPSICLE
- Today at 3:54 PM
General Linux Topics
O
VoxFox: the Linux screen-reader I had to build myself
- Latest: onzem
- Today at 6:47 AM
General Linux Topics

Top