| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: krb5-server | Distribution: CentOS |
| Version: 1.21.3 | Vendor: CentOS |
| Release: 8.el10 | Build date: Mon May 5 18:25:08 2025 |
| Group: Unspecified | Build host: aarch64-05.stream.rdu2.redhat.com |
| Size: 1263203 | Source RPM: krb5-1.21.3-8.el10.src.rpm |
| Packager: builder@centos.org | |
| Url: https://web.mit.edu/kerberos/www/ | |
| Summary: The KDC and related programs for Kerberos 5 | |
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, you need to install this package (in other words, most people should NOT install this package).
Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision
* Mon Apr 28 2025 Julien Rische <jrische@redhat.com> - 1.21.3-8
- Do not block HMAC-MD4/5 in FIPS mode
Resolves: RHEL-88705
- Don't issue RC4 session keys by default (CVE-2025-3576)
Resolves: RHEL-88047
- Add PKINIT paChecksum2 from MS-PKCA v20230920
Resolves: RHEL-74295
* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.3-7
- Prevent overflow when calculating ulog block size (CVE-2025-24528)
Resolves: RHEL-76758
* Fri Jan 17 2025 Julien Rische <jrische@redhat.com> - 1.21.3-6
- Support PKCS11 EC client certs in PKINIT
Resolves: RHEL-74373
- kdb5_util: fix DB entry flags on modification
Resolves: RHEL-56058
- Add ECDH support for PKINIT (RFC5349)
Resolves: RHEL-71881
* Mon Nov 04 2024 Julien Rische <jrische@redhat.com> - 1.21.3-5
- Make test dependencies optional if not part of CentOS/RHEL 10
Resolves: RHEL-65724
* Wed Oct 30 2024 Julien Rische <jrische@redhat.com> - 1.21.3-4
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: RHEL-55427
- Fix various issues detected by static analysis
Resolves: RHEL-45165
- Remove RSA protocol for PKINIT
Resolves: RHEL-56070
* Tue Oct 29 2024 Troy Dawson <tdawson@redhat.com> - 1.21.3-3
- Bump release for October 2024 mass rebuild:
Resolves: RHEL-64018
* Fri Jul 12 2024 Julien Rische <jrische@redhat.com> - 1.21.3-2
- Do not include files with "~" termination in krb5-tests
Resolves: RHEL-45995
* Fri Jul 12 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
- New upstream version (1.21.3)
- CVE-2024-37370 CVE-2024-37371
Fix vulnerabilities in GSS message token handling
Resolves: RHEL-45387 RHEL-45378
- Fix memory leak in GSSAPI interface
Resolves: RHEL-47284
- Fix memory leak in PMAP RPC interface
Resolves: RHEL-47287
- Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
Resolves: RHEL-47285
- Make TCP waiting time configurable
Resolves: RHEL-47278
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 1.21.2-7
- Bump release for June 2024 mass rebuild
* Wed Jun 19 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
- Add missing SPDX license identifiers
Resolves: RHEL-44383
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3
- Fix double free in klist's show_ccache()
Resolves: rhbz#2257301
- Store krb5-tests files in architecture-specific directories
Resolves: rhbz#2244601
* Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2
- Use SPDX expression for license tag
- Fix unimportant memory leaks
Resolves: rhbz#2223274
* Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1
- New upstream version (1.21.2)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
Resolves: rhbz#2229113
- Make tests compatible with Python 3.12
Resolves: rhbz#2224013
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2
- Replace file dependency with package name
Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1
- New upstream version (1.21)
- Do not disable PKINIT if some of the well-known DH groups are unavailable
Resolves: rhbz#2214297
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
Resolves: rhbz#2214300
- Allow to set PAC ticket signature as optional
Resolves: rhbz#2181311
- Add support for MS-PAC extended KDC signature (CVE-2022-37967)
Resolves: rhbz#2166001
- Fix syntax error in aclocal.m4
Resolves: rhbz#2143306
/etc/logrotate.d/kadmind /etc/logrotate.d/krb5kdc /etc/sysconfig/kadmin /etc/sysconfig/kprop /etc/sysconfig/krb5kdc /usr/bin/sclient /usr/lib/.build-id /usr/lib/.build-id/00 /usr/lib/.build-id/00/ddb8885f1de439d9f1d7e637a69c3a2ec30a8f /usr/lib/.build-id/1d /usr/lib/.build-id/1d/399f3f7d1b5bfef614c54738255ad8fb825dbe /usr/lib/.build-id/65 /usr/lib/.build-id/65/d2ecca402d084f840695aed64e50adba869151 /usr/lib/.build-id/66 /usr/lib/.build-id/66/e466a35eaad676b45308ba5edd24b9336d2dec /usr/lib/.build-id/73 /usr/lib/.build-id/73/6b44c76104b2f25ea9ac43065db7c912cc40bb /usr/lib/.build-id/87 /usr/lib/.build-id/87/ebb4b1215e87edf5b06d4d4140506b3839f1eb /usr/lib/.build-id/9d /usr/lib/.build-id/9d/5cb608bed7853f45f7141fa63871ac33fb8b22 /usr/lib/.build-id/a0 /usr/lib/.build-id/a0/262f21cc04f60bb9b790996a34e798b1e2846b /usr/lib/.build-id/bb /usr/lib/.build-id/bb/2d2a268caf3d4571f607d15a1af3230924573c /usr/lib/.build-id/d0 /usr/lib/.build-id/d0/8d1acf7de9f5d41c81205d0ee14510acfdf678 /usr/lib/.build-id/e5 /usr/lib/.build-id/e5/0bb452b65f2eb3e1b175e5a3d7f0a250281b2f /usr/lib/.build-id/f6 /usr/lib/.build-id/f6/58a845c996debc57481d5b7dd9e000d94d2061 /usr/lib/systemd/system/kadmin.service /usr/lib/systemd/system/kprop.service /usr/lib/systemd/system/krb5kdc.service /usr/lib/tmpfiles.d/krb5-krb5kdc.conf /usr/lib64/krb5 /usr/lib64/krb5/plugins /usr/lib64/krb5/plugins/authdata /usr/lib64/krb5/plugins/kdb /usr/lib64/krb5/plugins/kdb/db2.so /usr/lib64/krb5/plugins/kdb/klmdb.so /usr/lib64/krb5/plugins/preauth /usr/lib64/krb5/plugins/preauth/otp.so /usr/sbin/kadmin.local /usr/sbin/kadmind /usr/sbin/kdb5_util /usr/sbin/kprop /usr/sbin/kpropd /usr/sbin/kproplog /usr/sbin/krb5kdc /usr/sbin/sserver /usr/share/doc/krb5-server /usr/share/doc/krb5-server/kdc.conf /usr/share/man/man1/sclient.1.gz /usr/share/man/man5/kadm5.acl.5.gz /usr/share/man/man5/kdc.conf.5.gz /usr/share/man/man8/kadmin.local.8.gz /usr/share/man/man8/kadmind.8.gz /usr/share/man/man8/kdb5_util.8.gz /usr/share/man/man8/kprop.8.gz /usr/share/man/man8/kpropd.8.gz /usr/share/man/man8/kproplog.8.gz /usr/share/man/man8/krb5kdc.8.gz /usr/share/man/man8/sserver.8.gz /var/kerberos /var/kerberos/krb5kdc /var/kerberos/krb5kdc/kadm5.acl /var/kerberos/krb5kdc/kdc.conf /var/run/krb5kdc
Generated by rpm2html 1.8.1
Fabrice Bellet, Thu Jun 19 02:02:14 2025