krb5-server-ldap-1.21.3-1.fc40 RPM for x86_64

From Fedora 40 updates for x86_64 / Packages / k

Kerberos is a network authentication system. The krb5-server package
contains the programs that must be installed on a Kerberos 5 key
distribution center (KDC).  If you are installing a Kerberos 5 KDC,
and you wish to use a directory server to store the data for your
realm, you need to install this package.

Provides

• krb5-server-ldap
• krb5-server-ldap(x86-64)
• libkdb_ldap.so.1()(64bit)
• libkdb_ldap.so.1(HIDDEN)(64bit)
• libkdb_ldap.so.1(kdb_ldap_1_MIT)(64bit)

Requires

• krb5-libs(x86-64) = 1.21.3-1.fc40
• krb5-server(x86-64) = 1.21.3-1.fc40
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.25)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.38)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libc.so.6(GLIBC_2.8)(64bit)
• libc.so.6(GLIBC_ABI_DT_RELR)(64bit)
• libcom_err.so.2()(64bit)
• libcrypto.so.3()(64bit)
• libgssapi_krb5.so.2()(64bit)
• libgssrpc.so.4()(64bit)
• libgssrpc.so.4(gssrpc_4_MIT)(64bit)
• libk5crypto.so.3()(64bit)
• libk5crypto.so.3(k5crypto_3_MIT)(64bit)
• libkadm5(x86-64) = 1.21.3-1.fc40
• libkadm5srv_mit.so.12()(64bit)
• libkadm5srv_mit.so.12(kadm5srv_mit_12_MIT)(64bit)
• libkdb5.so.10()(64bit)
• libkdb5.so.10(kdb5_10_MIT)(64bit)
• libkdb_ldap.so.1()(64bit)
• libkdb_ldap.so.1(kdb_ldap_1_MIT)(64bit)
• libkeyutils.so.1()(64bit)
• libkrb5.so.3()(64bit)
• libkrb5.so.3(krb5_3_MIT)(64bit)
• libkrb5support.so.0()(64bit)
• libkrb5support.so.0(krb5support_0_MIT)(64bit)
• liblber.so.2()(64bit)
• libldap.so.2()(64bit)
• libldap.so.2(OPENLDAP_2.200)(64bit)
• libresolv.so.2()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision

Changelog

* Tue Jul 09 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
  - New upstream version (1.21.3)
  - CVE-2024-26458: Memory leak in src/lib/rpc/pmap_rmt.c
    Resolves: rhbz#2266732
  - CVE-2024-26461: Memory leak in src/lib/gssapi/krb5/k5sealv3.c
    Resolves: rhbz#2266741
  - CVE-2024-26462: Memory leak in src/kdc/ndr.c
    Resolves: rhbz#2266743
  - Add missing SPDX license identifiers
    Resolves: rhbz#2265333
* Mon Jul 08 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
  - CVE-2024-37370 CVE-2024-37371: GSS message token handling
    Resolves: rhbz#2294678 rhbz#2294680
  - Fix double free in klist's show_ccache()
    Resolves: rhbz#2257301
  - Do not include files with "~" termination in krb5-tests
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-5
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3
  - Fix double free in klist's show_ccache()
    Resolves: rhbz#2257301
  - Store krb5-tests files in architecture-specific directories
    Resolves: rhbz#2244601
* Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2
  - Use SPDX expression for license tag
  - Fix unimportant memory leaks
    Resolves: rhbz#2223274
* Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1
  - New upstream version (1.21.2)
  - Fix double-free in KDC TGS processing (CVE-2023-39975)
    Resolves: rhbz#2229113
  - Make tests compatible with Python 3.12
    Resolves: rhbz#2224013
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2
  - Replace file dependency with package name
    Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1
  - New upstream version (1.21)
  - Do not disable PKINIT if some of the well-known DH groups are unavailable
    Resolves: rhbz#2214297
  - Make PKINIT CMS SHA-1 signature verification available in FIPS mode
    Resolves: rhbz#2214300
  - Allow to set PAC ticket signature as optional
    Resolves: rhbz#2181311
  - Add support for MS-PAC extended KDC signature (CVE-2022-37967)
    Resolves: rhbz#2166001
  - Fix syntax error in aclocal.m4
    Resolves: rhbz#2143306
* Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
  - Add support for MS-PAC extended KDC signature (CVE-2022-37967)
    Resolves: rhbz#2166001
* Mon Jan 30 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8
  - Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled
  - Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.20.1-7
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jan 18 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6
  - Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf
  - Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf
    Resolves: rhbz#2114771
* Mon Jan 09 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5
  - Strip debugging data from ksu executable file
* Thu Jan 05 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4
  - Include missing OpenSSL FIPS header
  - Make tests compatible with sssd_krb5_locator_plugin.so
* Tue Dec 06 2022 Julien Rische <jrische@redhat.com> - 1.20.1-3
  - Enable TMT integration with Fedora CI
* Thu Dec 01 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.20.1-2
  - Bump KDB ABI version provide to 9.0
* Wed Nov 23 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1
  - New upstream version (1.20.1)
    Resolves: rhbz#2124463
  - Restore "supportedCMSTypes" attribute in PKINIT preauth requests
  - Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms
    Resolves: rhbz#2114766
  - Update error checking for OpenSSL CMS_verify
    Resolves: rhbz#2119704
  - Remove invalid password expiry warning
    Resolves: rhbz#2129113
* Wed Nov 09 2022 Julien Rische <jrische@redhat.com> - 1.19.2-13
  - Fix integer overflows in PAC parsing (CVE-2022-42898)
    Resolves: rhbz#2143011
* Tue Aug 02 2022 Andreas Schneider <asn@redhat.com> - 1.19.2-12
  - Use baserelease to set the release number
  - Do not define netlib, but use autoconf detection for res_* functions
  - Add missing BR for resolv_wrapper to run t_discover_uri.py
* Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.19.2-11.1
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild

Files

/usr/lib/.build-id
/usr/lib/.build-id/62
/usr/lib/.build-id/62/cf62d6e82f682ec1b9316e8b9dce2298c80f97
/usr/lib/.build-id/90
/usr/lib/.build-id/90/1d81963257c561a2caafe6192dd49243001d52
/usr/lib/.build-id/9d
/usr/lib/.build-id/9d/9309e7030b4482a442270adbf1ad3e45b0d6bb
/usr/lib64/krb5
/usr/lib64/krb5/plugins
/usr/lib64/krb5/plugins/kdb
/usr/lib64/krb5/plugins/kdb/kldap.so
/usr/lib64/libkdb_ldap.so
/usr/lib64/libkdb_ldap.so.1
/usr/lib64/libkdb_ldap.so.1.0
/usr/sbin/kdb5_ldap_util
/usr/share/doc/krb5-server-ldap
/usr/share/doc/krb5-server-ldap/60kerberos.ldif
/usr/share/doc/krb5-server-ldap/kerberos.ldif
/usr/share/doc/krb5-server-ldap/kerberos.schema
/usr/share/man/man8/kdb5_ldap_util.8.gz

Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Jul 27 02:07:16 2024