2359465 – (CVE-2025-3576) CVE-2025-3576 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

Bug 2359465 (CVE-2025-3576) - CVE-2025-3576 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

Summary: CVE-2025-3576 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Mes...

Keywords:
Status:	NEW
Alias:	CVE-2025-3576
Deadline:	2025-04-14
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2359672 2359673 2359705
Blocks:
TreeView+	depends on / blocked

Reported:	2025-04-14 11:06 UTC by OSIDB Bzimport
Modified:	2025-04-24 05:39 UTC (History)
CC List:	25 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-04-14 11:06:28 UTC

Under specific configurations where RC4-HMAC-MD5 is negotiated for GSSAPI-secured communication, attackers can sniff messages and use MD5 collision techniques to craft altered messages that retain the same MIC (Message Integrity Code). The vulnerable checksum function from RFC4757 allows this due to its flawed use of MD5. The attack relies on RC4 being chosen over stronger encryption options and presumes attacker access to the network traffic.

Note You need to log in before you can comment on or make changes to this bug.

abokovoy
brking
davidn
haoli
hkataria
jajackso
jcammara
jmitchel
jneedle
jrische
kegrant
koliveir
kshier
mabashia
pbraun
relrod
security-response-team
shvarugh
simaishi
smcdonal
stcannon
teagle
tfister
thavo
yguenane