| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: krb5-server | Distribution: AlmaLinux |
| Version: 1.21.1 | Vendor: AlmaLinux |
| Release: 4.el9_5 | Build date: Tue Nov 12 18:15:39 2024 |
| Group: Unspecified | Build host: ppc64le-builder01.almalinux.org |
| Size: 1258555 | Source RPM: krb5-1.21.1-4.el9_5.src.rpm |
| Packager: AlmaLinux Packaging Team <packager@almalinux.org> | |
| Url: https://web.mit.edu/kerberos/www/ | |
| Summary: The KDC and related programs for Kerberos 5 | |
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, you need to install this package (in other words, most people should NOT install this package).
MIT
* Thu Oct 17 2024 Julien Rische <jrische@redhat.com> - 1.21.1-4
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: RHEL-55423
- Fix various issues detected by static analysis
Resolves: RHEL-58216
- Remove RSA protocol for PKINIT
Resolves: RHEL-15323
* Fri Jul 05 2024 Julien Rische <jrische@redhat.com> - 1.21.1-3
- CVE-2024-37370 CVE-2024-37371
Fix vulnerabilities in GSS message token handling
Resolves: RHEL-45402 RHEL-45392
* Wed Mar 20 2024 Julien Rische <jrische@redhat.com> - 1.21.1-2
- Fix memory leak in GSSAPI interface
Resolves: RHEL-27251
- Fix memory leak in PMAP RPC interface
Resolves: RHEL-27245
- Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
Resolves: RHEL-27253
- Make TCP waiting time configurable
Resolves: RHEL-17132
* Tue Aug 08 2023 Julien Rische <jrische@redhat.com> - 1.21.1-1
- New upstream version (1.21.1)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
- Add support for "pac_privsvr_enctype" KDB string attribute
Resolves: rhbz#2060421
* Thu Jun 08 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
- Do not disable PKINIT if some of the well-known DH groups are unavailable
Resolves: rhbz#2187722
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
Resolves: rhbz#2155607
- Allow to set PAC ticket signature as optional
Resolves: rhbz#2178298
* Wed Feb 22 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8
- Fix datetime parsing in kadmin on s390x
Resolves: rhbz#2169985
* Tue Feb 14 2023 Julien Rische <jrische@redhat.com> - 1.20.1-7
- Fix double free on kdb5_util key creation failure
Resolves: rhbz#2166603
* Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6
- Add support for MS-PAC extended KDC signature (CVE-2022-37967)
Resolves: rhbz#2165827
* Thu Jan 19 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5
- Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled
- Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode
Resolves: rhbz#2162461
* Thu Jan 12 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4
- Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf
- Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf
Resolves: rhbz#2068535
* Tue Jan 10 2023 Julien Rische <jrische@redhat.com> - 1.20.1-2
- Strip debugging data from ksu executable file
Resolves: rhbz#2159643
* Wed Dec 07 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1
- Make tests compatible with sssd-client
Resolves: rhbz#2151513
- Remove invalid password expiry warning
Resolves: rhbz#2121099
- Update error checking for OpenSSL CMS_verify
Resolves: rhbz#2063838
- New upstream version (1.20.1)
Resolves: rhbz#2016312
- Fix integer overflows in PAC parsing (CVE-2022-42898)
Resolves: rhbz#2140971
* Tue Oct 18 2022 Julien Rische <jrische@redhat.com> - 1.19.1-23
- Fix kprop for propagating dump files larger than 4GB
Resolves: rhbz#2133014
/etc/logrotate.d/kadmind /etc/logrotate.d/krb5kdc /etc/sysconfig/kadmin /etc/sysconfig/kprop /etc/sysconfig/krb5kdc /usr/bin/sclient /usr/lib/.build-id /usr/lib/.build-id/34 /usr/lib/.build-id/34/57c87d424fff0c0b803a6cc75974bbd05381ee /usr/lib/.build-id/4a /usr/lib/.build-id/4a/27d692cad536467534fc0427f5ffedeb88d62c /usr/lib/.build-id/8a /usr/lib/.build-id/8a/35ce895dce7f31b085e489af03315b44e956f3 /usr/lib/.build-id/8a/c36557275386687a83cebf73d1975358451c2d /usr/lib/.build-id/91 /usr/lib/.build-id/91/9bff0004f3b022c6ae7d095af26c46b2867369 /usr/lib/.build-id/94 /usr/lib/.build-id/94/7ad86887c871d52738603c25a9fbd9a6b4b2cd /usr/lib/.build-id/9d /usr/lib/.build-id/9d/30d8f4cede75e30efa3b13ca06ff0e8c2179c0 /usr/lib/.build-id/a8 /usr/lib/.build-id/a8/bd23036dafb6d28eae392d1f3716a8aa206461 /usr/lib/.build-id/ad /usr/lib/.build-id/ad/36e19a9a02de31f975245c4c20590d15c94012 /usr/lib/.build-id/b6 /usr/lib/.build-id/b6/39892566ac25b1b1808f841fa934d0ef1c05c7 /usr/lib/.build-id/cd /usr/lib/.build-id/cd/a831a5d811de94aca26c724b4be7825218e800 /usr/lib/.build-id/da /usr/lib/.build-id/da/702799096c26bee11184dd4bf1a195b19106ba /usr/lib/systemd/system/kadmin.service /usr/lib/systemd/system/kprop.service /usr/lib/systemd/system/krb5kdc.service /usr/lib/tmpfiles.d/krb5-krb5kdc.conf /usr/lib64/krb5 /usr/lib64/krb5/plugins /usr/lib64/krb5/plugins/authdata /usr/lib64/krb5/plugins/kdb /usr/lib64/krb5/plugins/kdb/db2.so /usr/lib64/krb5/plugins/kdb/klmdb.so /usr/lib64/krb5/plugins/preauth /usr/lib64/krb5/plugins/preauth/otp.so /usr/sbin/kadmin.local /usr/sbin/kadmind /usr/sbin/kdb5_util /usr/sbin/kprop /usr/sbin/kpropd /usr/sbin/kproplog /usr/sbin/krb5kdc /usr/sbin/sserver /usr/share/doc/krb5-server /usr/share/doc/krb5-server/kdc.conf /usr/share/man/man1/sclient.1.gz /usr/share/man/man5/kadm5.acl.5.gz /usr/share/man/man5/kdc.conf.5.gz /usr/share/man/man8/kadmin.local.8.gz /usr/share/man/man8/kadmind.8.gz /usr/share/man/man8/kdb5_util.8.gz /usr/share/man/man8/kprop.8.gz /usr/share/man/man8/kpropd.8.gz /usr/share/man/man8/kproplog.8.gz /usr/share/man/man8/krb5kdc.8.gz /usr/share/man/man8/sserver.8.gz /var/kerberos /var/kerberos/krb5kdc /var/kerberos/krb5kdc/kadm5.acl /var/kerberos/krb5kdc/kdc.conf /var/run/krb5kdc
Generated by rpm2html 1.8.1
Fabrice Bellet, Fri Nov 15 08:43:51 2024