| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: krb5-server | Distribution: Fedora Project |
| Version: 1.21.3 | Vendor: Fedora Project |
| Release: 3.fc42 | Build date: Wed Oct 30 17:37:10 2024 |
| Group: Unspecified | Build host: buildvm-a64-12.iad2.fedoraproject.org |
| Size: 1275711 | Source RPM: krb5-1.21.3-3.fc42.src.rpm |
| Packager: Fedora Project | |
| Url: https://web.mit.edu/kerberos/www/ | |
| Summary: The KDC and related programs for Kerberos 5 | |
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, you need to install this package (in other words, most people should NOT install this package).
Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision
* Wed Oct 30 2024 Julien Rische <jrische@redhat.com> - 1.21.3-3
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: rhbz#2304071
- Fix various issues detected by static analysis
Resolves: rhbz#2322704
- Remove RSA protocol for PKINIT
Resolves: rhbz#2322706
- Make TCP waiting time configurable
Resolves: rhbz#2322711
* Thu Jul 18 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Tue Jul 09 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
- New upstream version (1.21.3)
- CVE-2024-26458: Memory leak in src/lib/rpc/pmap_rmt.c
Resolves: rhbz#2266732
- CVE-2024-26461: Memory leak in src/lib/gssapi/krb5/k5sealv3.c
Resolves: rhbz#2266741
- CVE-2024-26462: Memory leak in src/kdc/ndr.c
Resolves: rhbz#2266743
- Add missing SPDX license identifiers
Resolves: rhbz#2265333
* Mon Jul 08 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
- CVE-2024-37370 CVE-2024-37371: GSS message token handling
Resolves: rhbz#2294678 rhbz#2294680
- Fix double free in klist's show_ccache()
Resolves: rhbz#2257301
- Do not include files with "~" termination in krb5-tests
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3
- Fix double free in klist's show_ccache()
Resolves: rhbz#2257301
- Store krb5-tests files in architecture-specific directories
Resolves: rhbz#2244601
* Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2
- Use SPDX expression for license tag
- Fix unimportant memory leaks
Resolves: rhbz#2223274
* Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1
- New upstream version (1.21.2)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
Resolves: rhbz#2229113
- Make tests compatible with Python 3.12
Resolves: rhbz#2224013
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2
- Replace file dependency with package name
Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1
- New upstream version (1.21)
- Do not disable PKINIT if some of the well-known DH groups are unavailable
Resolves: rhbz#2214297
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
Resolves: rhbz#2214300
- Allow to set PAC ticket signature as optional
Resolves: rhbz#2181311
- Add support for MS-PAC extended KDC signature (CVE-2022-37967)
Resolves: rhbz#2166001
- Fix syntax error in aclocal.m4
Resolves: rhbz#2143306
* Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
- Add support for MS-PAC extended KDC signature (CVE-2022-37967)
Resolves: rhbz#2166001
* Mon Jan 30 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8
- Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled
- Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.20.1-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jan 18 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6
- Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf
- Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf
Resolves: rhbz#2114771
* Mon Jan 09 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5
- Strip debugging data from ksu executable file
* Thu Jan 05 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4
- Include missing OpenSSL FIPS header
- Make tests compatible with sssd_krb5_locator_plugin.so
* Tue Dec 06 2022 Julien Rische <jrische@redhat.com> - 1.20.1-3
- Enable TMT integration with Fedora CI
* Thu Dec 01 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.20.1-2
- Bump KDB ABI version provide to 9.0
* Wed Nov 23 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1
- New upstream version (1.20.1)
Resolves: rhbz#2124463
- Restore "supportedCMSTypes" attribute in PKINIT preauth requests
- Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms
Resolves: rhbz#2114766
- Update error checking for OpenSSL CMS_verify
Resolves: rhbz#2119704
- Remove invalid password expiry warning
Resolves: rhbz#2129113
* Wed Nov 09 2022 Julien Rische <jrische@redhat.com> - 1.19.2-13
- Fix integer overflows in PAC parsing (CVE-2022-42898)
Resolves: rhbz#2143011
/etc/logrotate.d/kadmind /etc/logrotate.d/krb5kdc /etc/sysconfig/kadmin /etc/sysconfig/kprop /etc/sysconfig/krb5kdc /usr/bin/sclient /usr/lib/.build-id /usr/lib/.build-id/09 /usr/lib/.build-id/09/049b6de7ed0ad77929bffc9e1affd681f0d481 /usr/lib/.build-id/0e /usr/lib/.build-id/0e/2fcd8e8f7483cd1b7030a88ea32a39b8cffd32 /usr/lib/.build-id/3e /usr/lib/.build-id/3e/3cb66a9683b40ac7262c94f0b0d1c9f93c54cf /usr/lib/.build-id/44 /usr/lib/.build-id/44/9a58ed4e533cc3ffa623abd7dd2819f2e74415 /usr/lib/.build-id/78 /usr/lib/.build-id/78/60a1e87a526fdaa61a863bc0c196785a40f20c /usr/lib/.build-id/7b /usr/lib/.build-id/7b/a38a6d8e6a123c8c5667aea1c1811aa98a04c2 /usr/lib/.build-id/93 /usr/lib/.build-id/93/69b20be5e3fea4df107c0f88402feedd33d3c8 /usr/lib/.build-id/a0 /usr/lib/.build-id/a0/933e05cbca253d4cb901706247591cbd8e4e26 /usr/lib/.build-id/b5 /usr/lib/.build-id/b5/82dbe2994b774b30ee917bba127cae54e0dce6 /usr/lib/.build-id/d0 /usr/lib/.build-id/d0/6101f13682afa2511fd7a7868d7407e4990ce4 /usr/lib/.build-id/de /usr/lib/.build-id/de/577501d9e2ac64822fe9cd723437dd41d80d2f /usr/lib/.build-id/f2 /usr/lib/.build-id/f2/6d7fb2264d29f0ccd0c9db8a1e6082eb6b6201 /usr/lib/systemd/system/kadmin.service /usr/lib/systemd/system/kprop.service /usr/lib/systemd/system/krb5kdc.service /usr/lib/tmpfiles.d/krb5-krb5kdc.conf /usr/lib64/krb5 /usr/lib64/krb5/plugins /usr/lib64/krb5/plugins/authdata /usr/lib64/krb5/plugins/kdb /usr/lib64/krb5/plugins/kdb/db2.so /usr/lib64/krb5/plugins/kdb/klmdb.so /usr/lib64/krb5/plugins/preauth /usr/lib64/krb5/plugins/preauth/otp.so /usr/sbin/kadmin.local /usr/sbin/kadmind /usr/sbin/kdb5_util /usr/sbin/kprop /usr/sbin/kpropd /usr/sbin/kproplog /usr/sbin/krb5kdc /usr/sbin/sserver /usr/share/doc/krb5-server /usr/share/doc/krb5-server/kdc.conf /usr/share/man/man1/sclient.1.gz /usr/share/man/man5/kadm5.acl.5.gz /usr/share/man/man5/kdc.conf.5.gz /usr/share/man/man8/kadmin.local.8.gz /usr/share/man/man8/kadmind.8.gz /usr/share/man/man8/kdb5_util.8.gz /usr/share/man/man8/kprop.8.gz /usr/share/man/man8/kpropd.8.gz /usr/share/man/man8/kproplog.8.gz /usr/share/man/man8/krb5kdc.8.gz /usr/share/man/man8/sserver.8.gz /var/kerberos /var/kerberos/krb5kdc /var/kerberos/krb5kdc/kadm5.acl /var/kerberos/krb5kdc/kdc.conf /var/run/krb5kdc
Generated by rpm2html 1.8.1
Fabrice Bellet, Sun Jan 12 04:19:01 2025