Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: krb5-pkinit | Distribution: CentOS |
Version: 1.19.1 | Vendor: CentOS |
Release: 22.el9 | Build date: Fri Jul 8 18:37:16 2022 |
Group: Unspecified | Build host: aarch64-03.stream.rdu2.redhat.com |
Size: 138132 | Source RPM: krb5-1.19.1-22.el9.src.rpm |
Packager: builder@centos.org | |
Url: https://web.mit.edu/kerberos/www/ | |
Summary: The PKINIT module for Kerberos 5 |
Kerberos is a network authentication system. The krb5-pkinit package contains the PKINIT plugin, which allows clients to obtain initial credentials from a KDC using a private key and a certificate.
MIT
* Fri Jul 08 2022 Julien Rische <jrische@redhat.com> - 1.19.1-22 - Restore "supportedCMSTypes" attribute in PKINIT preauth requests - Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms - Resolves: rhbz#2068935 * Thu Jun 23 2022 Julien Rische <jrische@redhat.com> - 1.19.1-21 - Fix libkrad client cleanup - Allow use of larger RADIUS attributes in krad library - Resolves: rhbz#2100351 * Thu May 12 2022 Julien Rische <jrische@redhat.com> - 1.19.1-20 - Fix OpenSSL 3 MD5 encyption in FIPS mode - Allow libkrad UDP/TCP connection to localhost in FIPS mode - Resolves: rhbz#2068458 * Mon May 02 2022 Julien Rische <jrische@redhat.com> - 1.19.1-19 - Use p11-kit as default PKCS11 module - Resolves: rhbz#2030981 * Tue Apr 26 2022 Julien Rische <jrische@redhat.com> - 1.19.1-18 - Try harder to avoid password change replay errors - Resolves: rhbz#2075186 * Mon Mar 14 2022 Julien Rische <jrische@redhat.com> - 1.19.1-15 - Use SHA-256 instead of SHA-1 for PKINIT CMS digest * Thu Feb 24 2022 Julien Rische <jrische@redhat.com> - 1.19.1-14 - Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled - Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode * Fri Dec 17 2021 Antonio Torres <antorres@redhat.com> - 1.19.1-13 - Remove -specs= from krb5-config output - Resolves #1997021 * Wed Oct 20 2021 Antonio Torres <antorres@redhat.com> - 1.19.1-12 - Fix KDC null deref on TGS inner body null server (CVE-2021-37750) - Resolves: #1997602 * Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 1.19.1-11.1 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688 * Tue Jul 20 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-11 - Fix KDC null deref on bad encrypted challenge (CVE-2021-36222) - Resolves: #1983733 * Wed Jul 14 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-10 - Update OpenSSL 3 provider handling to clean up properly - Resolves: #1955873 * Mon Jun 21 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-9 - Sync openssl3 patches with upstream - Resolves: #1955873 * Thu Jun 17 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-8 - Rebuild for rpminspect and mass rebuild cleanup; no code changes - Resolves: #1967505 * Thu Jun 17 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-7 - Fix several fallback canonicalization problems - Resolves: #1967505 * Tue Jun 15 2021 Mohan Boddu <mboddu@redhat.com> - 1.19.1-6.1 - Rebuilt for RHEL 9 BETA for openssl 3.0 - Resolves: rhbz#1971065 * Thu Jun 10 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-6 - Backport KCM retrieval fixes - Resolves: #1956403 * Thu May 20 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-5 - Fix DES3 mention in KDFs - Resolves: #1955873 * Wed May 19 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-4 - Port to OpenSSL 3 (alpha 15) - Resolves: #1955873 * Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 1.19.1-3.1 - Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937 * Mon Mar 01 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-3 - Further test dependency fixes; no code changes * Mon Mar 01 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-2 - Make test dependencies contingent on skipcheck; no code changes * Thu Feb 18 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.1-1 - New upstream version (1.19.1) * Wed Feb 17 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-3 - Restore krb5_set_default_tgs_ktypes() * Fri Feb 05 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-2 - No code change; just coping with reverted autoconf * Tue Feb 02 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-1 - New upstream version (1.19) * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.5 - Support host-based GSS initiator names * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.4 - Require krb5-pkinit from krb5-{server,workstation} * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.3 - Fix up weird mass rebuild versioning * Thu Jan 28 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.2.2 - Add APIs for marshalling credentials * Wed Jan 27 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta2.1.2 - Cope with new autotools behavior wrt runstatedir * Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1.19-0.beta2.1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Tue Jan 12 2021 Robbie Harwood <rharwood@redhat.com> - 1.19-1 - New upstream version (1.19-beta2) * Wed Dec 16 2020 Robbie Harwood <rharwood@redhat.com> - 1.19-0.beta1.2 - New upstream version (1.19-beta1) * Wed Dec 16 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-5 - Fix runstatedir configuration - Why couldn't systemd just leave it alone? * Tue Nov 24 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-4 - Document -k option in kvno(1) synopsis * Fri Nov 20 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-3 - Upstream executable shared libraries patch * Wed Nov 18 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-2 - Fix build failure in -1 * Wed Nov 18 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.3-1 - New upstream version (1.18.3) * Tue Nov 17 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-30 - Migrate /var/run to /run, an exercise in pointlessness - Resolves: #1898410 * Thu Nov 05 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-29 - Add recursion limit for ASN.1 indefinite lengths (CVE-2020-28196) * Fri Oct 23 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-28 - Fix minor static analysis defects * Wed Oct 21 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-27 - Fix build of previous * Wed Oct 21 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-26 - Cross-realm s4u fixes for samba (#1836630) * Thu Oct 15 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-25 - Unify kvno option documentation * Fri Oct 02 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-24 - Add md5 override to krad * Thu Sep 10 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-23 - Use `systemctl reload` to HUP the KDC during logrotate - Resolves: #1877692 * Wed Sep 09 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-22 - Fix input length checking in SPNEGO DER decoding * Fri Aug 28 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-21 - Mark crypto-polices snippet as missingok - Resolves: #1868379 * Thu Aug 13 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-20 - Temporarily dns_canonicalize_hostname=fallback changes - Hopefully unbreak IPA while we debug further * Fri Aug 07 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-19 - Expand dns_canonicalize_hostname=fallback support * Tue Aug 04 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-18 - Fix leak in KERB_AP_OPTIONS_CBT server support * Mon Aug 03 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-17 - Revert qualify_shortname removal * Mon Aug 03 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-16 - Disable tests on s390x - Resolves: #1863952 * Sat Aug 01 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.18.2-15 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Fri Jul 31 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-14 - Revert qualify_shortname changes * Tue Jul 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1.18.2-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Wed Jul 22 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-12 - Ignore bad enctypes in krb5_string_to_keysalts() - Allow gss_unwrap_iov() of unpadded RC4 tokens * Wed Jul 15 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-11 - Ignore bad enctypes in krb5_string_to_keysalts() * Wed Jul 08 2020 Robbie Harwood <rharwood@redhat.com> - 1.18.2-10 - Set qualify_shortname empty in default configuration - Resolves: #1852041
/usr/lib/.build-id /usr/lib/.build-id/64 /usr/lib/.build-id/64/842ecb3e5ab220fd0ec1e597bdc8e8975ae8d1 /usr/lib64/krb5 /usr/lib64/krb5/plugins /usr/lib64/krb5/plugins/preauth /usr/lib64/krb5/plugins/preauth/pkinit.so
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed Apr 17 04:36:33 2024