| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: krb5-devel | Distribution: CentOS |
| Version: 1.21.1 | Vendor: CentOS |
| Release: 2.el9 | Build date: Wed Apr 3 11:28:13 2024 |
| Group: Unspecified | Build host: aarch64-06.stream.rdu2.redhat.com |
| Size: 723566 | Source RPM: krb5-1.21.1-2.el9.src.rpm |
| Packager: builder@centos.org | |
| Url: https://web.mit.edu/kerberos/www/ | |
| Summary: Development files needed to compile Kerberos 5 programs | |
Kerberos is a network authentication system. The krb5-devel package contains the header files and libraries needed for compiling Kerberos 5 programs. If you want to develop Kerberos-aware programs, you need to install this package.
MIT
* Wed Mar 20 2024 Julien Rische <jrische@redhat.com> - 1.21.1-2
- Fix memory leak in GSSAPI interface
Resolves: RHEL-27251
- Fix memory leak in PMAP RPC interface
Resolves: RHEL-27245
- Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
Resolves: RHEL-27253
- Make TCP waiting time configurable
Resolves: RHEL-17132
* Tue Aug 08 2023 Julien Rische <jrische@redhat.com> - 1.21.1-1
- New upstream version (1.21.1)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
- Add support for "pac_privsvr_enctype" KDB string attribute
Resolves: rhbz#2060421
* Thu Jun 08 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
- Do not disable PKINIT if some of the well-known DH groups are unavailable
Resolves: rhbz#2187722
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
Resolves: rhbz#2155607
- Allow to set PAC ticket signature as optional
Resolves: rhbz#2178298
* Wed Feb 22 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8
- Fix datetime parsing in kadmin on s390x
Resolves: rhbz#2169985
* Tue Feb 14 2023 Julien Rische <jrische@redhat.com> - 1.20.1-7
- Fix double free on kdb5_util key creation failure
Resolves: rhbz#2166603
* Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6
- Add support for MS-PAC extended KDC signature (CVE-2022-37967)
Resolves: rhbz#2165827
* Thu Jan 19 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5
- Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled
- Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode
Resolves: rhbz#2162461
* Thu Jan 12 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4
- Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf
- Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf
Resolves: rhbz#2068535
* Tue Jan 10 2023 Julien Rische <jrische@redhat.com> - 1.20.1-2
- Strip debugging data from ksu executable file
Resolves: rhbz#2159643
* Wed Dec 07 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1
- Make tests compatible with sssd-client
Resolves: rhbz#2151513
- Remove invalid password expiry warning
Resolves: rhbz#2121099
- Update error checking for OpenSSL CMS_verify
Resolves: rhbz#2063838
- New upstream version (1.20.1)
Resolves: rhbz#2016312
- Fix integer overflows in PAC parsing (CVE-2022-42898)
Resolves: rhbz#2140971
* Tue Oct 18 2022 Julien Rische <jrische@redhat.com> - 1.19.1-23
- Fix kprop for propagating dump files larger than 4GB
Resolves: rhbz#2133014
* Fri Jul 08 2022 Julien Rische <jrische@redhat.com> - 1.19.1-22
- Restore "supportedCMSTypes" attribute in PKINIT preauth requests
- Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms
Resolves: rhbz#2068935
* Thu Jun 23 2022 Julien Rische <jrische@redhat.com> - 1.19.1-21
- Fix libkrad client cleanup
- Allow use of larger RADIUS attributes in krad library
Resolves: rhbz#2100351
* Thu May 12 2022 Julien Rische <jrische@redhat.com> - 1.19.1-20
- Fix OpenSSL 3 MD5 encyption in FIPS mode
- Allow libkrad UDP/TCP connection to localhost in FIPS mode
Resolves: rhbz#2068458
* Mon May 02 2022 Julien Rische <jrische@redhat.com> - 1.19.1-19
- Use p11-kit as default PKCS11 module
Resolves: rhbz#2030981
* Tue Apr 26 2022 Julien Rische <jrische@redhat.com> - 1.19.1-18
- Try harder to avoid password change replay errors
Resolves: rhbz#2075186
/usr/bin/krb5-config /usr/include/gssapi /usr/include/gssapi.h /usr/include/gssapi/gssapi.h /usr/include/gssapi/gssapi_alloc.h /usr/include/gssapi/gssapi_ext.h /usr/include/gssapi/gssapi_generic.h /usr/include/gssapi/gssapi_krb5.h /usr/include/gssapi/mechglue.h /usr/include/gssrpc /usr/include/gssrpc/auth.h /usr/include/gssrpc/auth_gss.h /usr/include/gssrpc/auth_gssapi.h /usr/include/gssrpc/auth_unix.h /usr/include/gssrpc/clnt.h /usr/include/gssrpc/netdb.h /usr/include/gssrpc/pmap_clnt.h /usr/include/gssrpc/pmap_prot.h /usr/include/gssrpc/pmap_rmt.h /usr/include/gssrpc/rename.h /usr/include/gssrpc/rpc.h /usr/include/gssrpc/rpc_msg.h /usr/include/gssrpc/svc.h /usr/include/gssrpc/svc_auth.h /usr/include/gssrpc/types.h /usr/include/gssrpc/xdr.h /usr/include/kadm5 /usr/include/kadm5/admin.h /usr/include/kadm5/chpass_util_strings.h /usr/include/kadm5/kadm_err.h /usr/include/kdb.h /usr/include/krad.h /usr/include/krb5 /usr/include/krb5.h /usr/include/krb5/ccselect_plugin.h /usr/include/krb5/certauth_plugin.h /usr/include/krb5/clpreauth_plugin.h /usr/include/krb5/hostrealm_plugin.h /usr/include/krb5/kadm5_auth_plugin.h /usr/include/krb5/kadm5_hook_plugin.h /usr/include/krb5/kdcpolicy_plugin.h /usr/include/krb5/kdcpreauth_plugin.h /usr/include/krb5/krb5.h /usr/include/krb5/localauth_plugin.h /usr/include/krb5/locate_plugin.h /usr/include/krb5/plugin.h /usr/include/krb5/preauth_plugin.h /usr/include/krb5/pwqual_plugin.h /usr/include/profile.h /usr/lib64/libgssapi_krb5.so /usr/lib64/libgssrpc.so /usr/lib64/libk5crypto.so /usr/lib64/libkdb5.so /usr/lib64/libkrad.so /usr/lib64/libkrb5.so /usr/lib64/libkrb5support.so /usr/lib64/pkgconfig/gssrpc.pc /usr/lib64/pkgconfig/kadm-client.pc /usr/lib64/pkgconfig/kadm-server.pc /usr/lib64/pkgconfig/kdb.pc /usr/lib64/pkgconfig/krb5-gssapi.pc /usr/lib64/pkgconfig/krb5.pc /usr/lib64/pkgconfig/mit-krb5-gssapi.pc /usr/lib64/pkgconfig/mit-krb5.pc /usr/share/man/man1/krb5-config.1.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Oct 29 07:37:23 2024