Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: krb5-pkinit | Distribution: CentOS |
Version: 1.21.3 | Vendor: CentOS |
Release: 2.el10 | Build date: Fri Jul 12 17:41:12 2024 |
Group: Unspecified | Build host: aarch64-02.stream.rdu2.redhat.com |
Size: 136420 | Source RPM: krb5-1.21.3-2.el10.src.rpm |
Packager: builder@centos.org | |
Url: https://web.mit.edu/kerberos/www/ | |
Summary: The PKINIT module for Kerberos 5 |
Kerberos is a network authentication system. The krb5-pkinit package contains the PKINIT plugin, which allows clients to obtain initial credentials from a KDC using a private key and a certificate.
Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision
* Fri Jul 12 2024 Julien Rische <jrische@redhat.com> - 1.21.3-2 - Do not include files with "~" termination in krb5-tests Resolves: RHEL-45995 * Fri Jul 12 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1 - New upstream version (1.21.3) - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45387 RHEL-45378 - Fix memory leak in GSSAPI interface Resolves: RHEL-47284 - Fix memory leak in PMAP RPC interface Resolves: RHEL-47287 - Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC Resolves: RHEL-47285 - Make TCP waiting time configurable Resolves: RHEL-47278 * Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 1.21.2-7 - Bump release for June 2024 mass rebuild * Wed Jun 19 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6 - Add missing SPDX license identifiers Resolves: RHEL-44383 * Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3 - Fix double free in klist's show_ccache() Resolves: rhbz#2257301 - Store krb5-tests files in architecture-specific directories Resolves: rhbz#2244601 * Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2 - Use SPDX expression for license tag - Fix unimportant memory leaks Resolves: rhbz#2223274 * Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1 - New upstream version (1.21.2) - Fix double-free in KDC TGS processing (CVE-2023-39975) Resolves: rhbz#2229113 - Make tests compatible with Python 3.12 Resolves: rhbz#2224013 * Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2 - Replace file dependency with package name Resolves: rhbz#2216903 * Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1 - New upstream version (1.21) - Do not disable PKINIT if some of the well-known DH groups are unavailable Resolves: rhbz#2214297 - Make PKINIT CMS SHA-1 signature verification available in FIPS mode Resolves: rhbz#2214300 - Allow to set PAC ticket signature as optional Resolves: rhbz#2181311 - Add support for MS-PAC extended KDC signature (CVE-2022-37967) Resolves: rhbz#2166001 - Fix syntax error in aclocal.m4 Resolves: rhbz#2143306 * Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9 - Add support for MS-PAC extended KDC signature (CVE-2022-37967) Resolves: rhbz#2166001 * Mon Jan 30 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8 - Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled - Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode * Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.20.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Wed Jan 18 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6 - Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf - Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf Resolves: rhbz#2114771 * Mon Jan 09 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5 - Strip debugging data from ksu executable file * Thu Jan 05 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4 - Include missing OpenSSL FIPS header - Make tests compatible with sssd_krb5_locator_plugin.so * Tue Dec 06 2022 Julien Rische <jrische@redhat.com> - 1.20.1-3 - Enable TMT integration with Fedora CI * Thu Dec 01 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.20.1-2 - Bump KDB ABI version provide to 9.0 * Wed Nov 23 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1 - New upstream version (1.20.1) Resolves: rhbz#2124463 - Restore "supportedCMSTypes" attribute in PKINIT preauth requests - Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms Resolves: rhbz#2114766 - Update error checking for OpenSSL CMS_verify Resolves: rhbz#2119704 - Remove invalid password expiry warning Resolves: rhbz#2129113 * Wed Nov 09 2022 Julien Rische <jrische@redhat.com> - 1.19.2-13 - Fix integer overflows in PAC parsing (CVE-2022-42898) Resolves: rhbz#2143011 * Tue Aug 02 2022 Andreas Schneider <asn@redhat.com> - 1.19.2-12 - Use baserelease to set the release number - Do not define netlib, but use autoconf detection for res_* functions - Add missing BR for resolv_wrapper to run t_discover_uri.py * Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.19.2-11.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
/usr/lib/.build-id /usr/lib/.build-id/ba /usr/lib/.build-id/ba/da23f5efdb1a0f70812d25dd8010768b0ec7ba /usr/lib64/krb5 /usr/lib64/krb5/plugins /usr/lib64/krb5/plugins/preauth /usr/lib64/krb5/plugins/preauth/pkinit.so
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed Oct 30 10:14:22 2024