| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: krb5-libs | Distribution: Fedora Project |
| Version: 1.21.3 | Vendor: Fedora Project |
| Release: 6.fc43 | Build date: Fri Jun 6 14:48:33 2025 |
| Group: Unspecified | Build host: buildhw-x86-15.iad2.fedoraproject.org |
| Size: 2419869 | Source RPM: krb5-1.21.3-6.fc43.src.rpm |
| Packager: Fedora Project | |
| Url: https://web.mit.edu/kerberos/www/ | |
| Summary: The non-admin shared libraries used by Kerberos 5 | |
Kerberos is a network authentication system. The krb5-libs package contains the shared libraries needed by Kerberos 5. If you are using Kerberos, you need to install this package.
Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision
* Wed Jun 04 2025 Julien Rische <jrische@redhat.com> - 1.21.3-6
- Do not block HMAC-MD4/5 in FIPS mode
Resolves: rhbz#2370259
- PKINIT: implement paChecksum2 from MS-PKCA v20230920
Resolves: rhbz#2357215
- Disallow RC4 HMAC-MD5 session keys by default (CVE-2025-3576)
Resolves: rhbz#2359705
* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.3-5
- Prevent overflow when calculating ulog block size (CVE-2025-24528)
Resolves: rhbz#2342798
- Support PKCS11 EC client certs in PKINIT
Resolves: rhbz#2341962
- kdb5_util: fix DB entry flags on modification
Resolves: rhbz#2336555
- Add ECDH support for PKINIT (RFC5349)
Resolves: rhbz#2214326
- Remove dependency of krb5-libs on gawk and sed
Resolves: rhbz#2323859
* Fri Jan 17 2025 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Oct 30 2024 Julien Rische <jrische@redhat.com> - 1.21.3-3
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: rhbz#2304071
- Fix various issues detected by static analysis
Resolves: rhbz#2322704
- Remove RSA protocol for PKINIT
Resolves: rhbz#2322706
- Make TCP waiting time configurable
Resolves: rhbz#2322711
* Thu Jul 18 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Tue Jul 09 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
- New upstream version (1.21.3)
- CVE-2024-26458: Memory leak in src/lib/rpc/pmap_rmt.c
Resolves: rhbz#2266732
- CVE-2024-26461: Memory leak in src/lib/gssapi/krb5/k5sealv3.c
Resolves: rhbz#2266741
- CVE-2024-26462: Memory leak in src/kdc/ndr.c
Resolves: rhbz#2266743
- Add missing SPDX license identifiers
Resolves: rhbz#2265333
* Mon Jul 08 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
- CVE-2024-37370 CVE-2024-37371: GSS message token handling
Resolves: rhbz#2294678 rhbz#2294680
- Fix double free in klist's show_ccache()
Resolves: rhbz#2257301
- Do not include files with "~" termination in krb5-tests
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3
- Fix double free in klist's show_ccache()
Resolves: rhbz#2257301
- Store krb5-tests files in architecture-specific directories
Resolves: rhbz#2244601
* Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2
- Use SPDX expression for license tag
- Fix unimportant memory leaks
Resolves: rhbz#2223274
* Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1
- New upstream version (1.21.2)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
Resolves: rhbz#2229113
- Make tests compatible with Python 3.12
Resolves: rhbz#2224013
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2
- Replace file dependency with package name
Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1
- New upstream version (1.21)
- Do not disable PKINIT if some of the well-known DH groups are unavailable
Resolves: rhbz#2214297
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
Resolves: rhbz#2214300
- Allow to set PAC ticket signature as optional
Resolves: rhbz#2181311
- Add support for MS-PAC extended KDC signature (CVE-2022-37967)
Resolves: rhbz#2166001
- Fix syntax error in aclocal.m4
Resolves: rhbz#2143306
/etc/gss /etc/gss/mech.d /etc/krb5.conf /etc/krb5.conf.d /etc/krb5.conf.d/crypto-policies /usr/lib/.build-id /usr/lib/.build-id/25 /usr/lib/.build-id/25/76a8683195528636c6499592effac46cf7e139 /usr/lib/.build-id/6a /usr/lib/.build-id/6a/5fbde6a809f9bff56af5d34ca14663c9bf0123 /usr/lib/.build-id/87 /usr/lib/.build-id/87/95118b8d695c8e344fb98e9fd49276e4849062 /usr/lib/.build-id/91 /usr/lib/.build-id/91/f8446be338b59d0fca8ce14ef29b2e8915de8b /usr/lib/.build-id/95 /usr/lib/.build-id/95/32a2da8621742616f7a191104cc208a19815b4 /usr/lib/.build-id/a9 /usr/lib/.build-id/a9/755f9f52990bf852e6c19d3bbb7cf8c06ada83 /usr/lib/.build-id/ab /usr/lib/.build-id/ab/a6642d24831c1796cc1f51eae6c0cb0ac68d8f /usr/lib/.build-id/c5 /usr/lib/.build-id/c5/dd1a42d86572bb3cf0f87c47ed7ec0c887aa91 /usr/lib/.build-id/c8 /usr/lib/.build-id/c8/1e3417c38b5fba190e65950d47fba11368a19c /usr/lib/krb5 /usr/lib/krb5/plugins /usr/lib/krb5/plugins/authdata /usr/lib/krb5/plugins/kdb /usr/lib/krb5/plugins/libkrb5 /usr/lib/krb5/plugins/preauth /usr/lib/krb5/plugins/preauth/spake.so /usr/lib/krb5/plugins/tls /usr/lib/krb5/plugins/tls/k5tls.so /usr/lib/libgssapi_krb5.so.2 /usr/lib/libgssapi_krb5.so.2.2 /usr/lib/libgssrpc.so.4 /usr/lib/libgssrpc.so.4.2 /usr/lib/libk5crypto.so.3 /usr/lib/libk5crypto.so.3.1 /usr/lib/libkdb5.so.10 /usr/lib/libkdb5.so.10.0 /usr/lib/libkrad.so.0 /usr/lib/libkrad.so.0.0 /usr/lib/libkrb5.so.3 /usr/lib/libkrb5.so.3.3 /usr/lib/libkrb5support.so.0 /usr/lib/libkrb5support.so.0.1 /usr/share/doc/krb5-libs /usr/share/doc/krb5-libs/NOTICE /usr/share/doc/krb5-libs/README /usr/share/licenses/krb5-libs /usr/share/licenses/krb5-libs/LICENSE /usr/share/locale/de/LC_MESSAGES/mit-krb5.mo /usr/share/locale/en_US/LC_MESSAGES/mit-krb5.mo /usr/share/locale/ka/LC_MESSAGES/mit-krb5.mo /usr/share/man/man5/.k5identity.5.gz /usr/share/man/man5/.k5login.5.gz /usr/share/man/man5/k5identity.5.gz /usr/share/man/man5/k5login.5.gz /usr/share/man/man5/krb5.conf.5.gz /usr/share/man/man7/kerberos.7.gz /var/kerberos /var/kerberos/krb5 /var/kerberos/krb5/user
Generated by rpm2html 1.8.1
Fabrice Bellet, Mon Jun 9 00:03:32 2025