krb5-libs-1.21-3.fc38 RPM for i686

From Fedora 38 updates for x86_64 / Packages / k

Kerberos is a network authentication system. The krb5-libs package
contains the shared libraries needed by Kerberos 5. If you are using
Kerberos, you need to install this package.

Provides

• krb5-libs
• config(krb5-libs)
• krb5-libs(x86-32)
• libgssapi_krb5.so.2
• libgssapi_krb5.so.2(HIDDEN)
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)
• libgssrpc.so.4
• libgssrpc.so.4(HIDDEN)
• libgssrpc.so.4(gssrpc_4_MIT)
• libk5crypto.so.3
• libk5crypto.so.3(HIDDEN)
• libk5crypto.so.3(k5crypto_3_MIT)
• libkdb5.so.10
• libkdb5.so.10(HIDDEN)
• libkdb5.so.10(kdb5_10_MIT)
• libkrad.so.0
• libkrad.so.0(HIDDEN)
• libkrad.so.0(krad_0_MIT)
• libkrb5.so.3
• libkrb5.so.3(HIDDEN)
• libkrb5.so.3(krb5_3_MIT)
• libkrb5support.so.0
• libkrb5support.so.0(HIDDEN)
• libkrb5support.so.0(krb5support_0_MIT)

Requires

• /etc/crypto-policies/back-ends/krb5.config
• config(krb5-libs) = 1.21-3.fc38
• coreutils
• gawk
• keyutils-libs >= 1.5.8
• ld-linux.so.2
• ld-linux.so.2(GLIBC_2.3)
• libc.so.6
• libc.so.6(GLIBC_2.0)
• libc.so.6(GLIBC_2.1)
• libc.so.6(GLIBC_2.1.2)
• libc.so.6(GLIBC_2.1.3)
• libc.so.6(GLIBC_2.15)
• libc.so.6(GLIBC_2.16)
• libc.so.6(GLIBC_2.17)
• libc.so.6(GLIBC_2.2)
• libc.so.6(GLIBC_2.2.3)
• libc.so.6(GLIBC_2.25)
• libc.so.6(GLIBC_2.27)
• libc.so.6(GLIBC_2.28)
• libc.so.6(GLIBC_2.3)
• libc.so.6(GLIBC_2.3.4)
• libc.so.6(GLIBC_2.33)
• libc.so.6(GLIBC_2.34)
• libc.so.6(GLIBC_2.4)
• libc.so.6(GLIBC_2.7)
• libc.so.6(GLIBC_2.8)
• libcom_err.so.2
• libcrypto.so.3
• libcrypto.so.3(OPENSSL_3.0.0)
• libgssapi_krb5.so.2
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)
• libgssrpc.so.4
• libgssrpc.so.4(gssrpc_4_MIT)
• libk5crypto.so.3
• libk5crypto.so.3(k5crypto_3_MIT)
• libkeyutils.so.1
• libkeyutils.so.1(KEYUTILS_0.3)
• libkeyutils.so.1(KEYUTILS_1.0)
• libkeyutils.so.1(KEYUTILS_1.5)
• libkrb5.so.3
• libkrb5.so.3(krb5_3_MIT)
• libkrb5support.so.0
• libkrb5support.so.0(krb5support_0_MIT)
• libresolv.so.2
• libresolv.so.2(GLIBC_2.9)
• libselinux.so.1
• libselinux.so.1(LIBSELINUX_1.0)
• libssl.so.3
• libssl.so.3(OPENSSL_3.0.0)
• libverto.so.1
• openssl-libs >= 1:3.0.0
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)
• sed

License

MIT

Changelog

* Tue Aug 08 2023 Julien Rische <jrische@redhat.com> - 1.21-3
  - Fix double-free in KDC TGS processing (CVE-2023-39975)
* Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2
  - Replace file dependency with package name
    Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1
  - New upstream version (1.21)
  - Do not disable PKINIT if some of the well-known DH groups are unavailable
    Resolves: rhbz#2214297
  - Make PKINIT CMS SHA-1 signature verification available in FIPS mode
    Resolves: rhbz#2214300
  - Allow to set PAC ticket signature as optional
    Resolves: rhbz#2181311
  - Add support for MS-PAC extended KDC signature (CVE-2022-37967)
    Resolves: rhbz#2166001
  - Fix syntax error in aclocal.m4
    Resolves: rhbz#2143306
* Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
  - Add support for MS-PAC extended KDC signature (CVE-2022-37967)
    Resolves: rhbz#2166001
* Mon Jan 30 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8
  - Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled
  - Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode
* Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.20.1-7
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jan 18 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6
  - Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf
  - Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf
    Resolves: rhbz#2114771
* Mon Jan 09 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5
  - Strip debugging data from ksu executable file
* Thu Jan 05 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4
  - Include missing OpenSSL FIPS header
  - Make tests compatible with sssd_krb5_locator_plugin.so
* Tue Dec 06 2022 Julien Rische <jrische@redhat.com> - 1.20.1-3
  - Enable TMT integration with Fedora CI
* Thu Dec 01 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.20.1-2
  - Bump KDB ABI version provide to 9.0
* Wed Nov 23 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1
  - New upstream version (1.20.1)
    Resolves: rhbz#2124463
  - Restore "supportedCMSTypes" attribute in PKINIT preauth requests
  - Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms
    Resolves: rhbz#2114766
  - Update error checking for OpenSSL CMS_verify
    Resolves: rhbz#2119704
  - Remove invalid password expiry warning
    Resolves: rhbz#2129113
* Wed Nov 09 2022 Julien Rische <jrische@redhat.com> - 1.19.2-13
  - Fix integer overflows in PAC parsing (CVE-2022-42898)
    Resolves: rhbz#2143011
* Tue Aug 02 2022 Andreas Schneider <asn@redhat.com> - 1.19.2-12
  - Use baserelease to set the release number
  - Do not define netlib, but use autoconf detection for res_* functions
  - Add missing BR for resolv_wrapper to run t_discover_uri.py
* Thu Jul 21 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.19.2-11.1
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Wed Jun 15 2022 Julien Rische <jrische@redhat.com> - 1.19.2-11
  - Allow libkrad UDP/TCP connection to localhost in FIPS mode
    Resolves: rhbz#2082189
  - Read GSS configuration files with mtime 0
* Mon May 02 2022 Julien Rische <jrische@redhat.com> - 1.19.2-10
  - Use p11-kit as default PKCS11 module
    Resolves: rhbz#2073274
  - Try harder to avoid password change replay errors
    Resolves: rhbz#2072059
* Tue Apr 05 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.19.2-9
  - Fix libkrad client cleanup
  - Fixes rhbz#2072059
* Tue Apr 05 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.19.2-8
  - Allow use of larger RADIUS attributes in krad library
* Wed Mar 23 2022 Julien Rische <jrische@redhat.com> - 1.19.2-7
  - Use SHA-256 instead of SHA-1 for PKINIT CMS digest
* Tue Feb 08 2022 Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> - 1.19.2-6
  - Drop old trigger scriplet
  - Reenable package notes and strip LDFLAGS from krb5-config (rhbz#2048909)
* Wed Feb 02 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.19.2-5
  - Temporarily remove package note to unblock krb5-dependent packages
    Resolves: rhbz#2048909
* Thu Jan 20 2022 Fedora Release Engineering <releng@fedoraproject.org> - 1.19.2-4.1
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Dec 03 2021 Antonio Torres <antorres@redhat.com> - 1.19.2-4
  - Add patches to support OpenSLL 3.0.0
  - Remove TCL-based libkadm5 API tests
* Tue Sep 14 2021 Sahana Prasad <sahana@redhat.com> - 1.19.2-3.1
  - Rebuilt with OpenSSL 3.0.0
* Tue Aug 24 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.2-3
  - Remove -specs= from krb5-config output
* Thu Aug 19 2021 Robbie Harwood <rharwood@redhat.com> - 1.19.2-2
  - Fix KDC null deref on TGS inner body null server (CVE-2021-37750)

Files

/etc/gss
/etc/gss/mech.d
/etc/krb5.conf
/etc/krb5.conf.d
/etc/krb5.conf.d/crypto-policies
/usr/lib/.build-id
/usr/lib/.build-id/08
/usr/lib/.build-id/08/8ee3611d3e3be409f851ffc7eef6a6a701c837
/usr/lib/.build-id/6a
/usr/lib/.build-id/6a/fda1cf57ef96f46df3a796aae38f2d10a30638
/usr/lib/.build-id/9f
/usr/lib/.build-id/9f/c5dbda84608bd137fc2887e5e808d1ab15e003
/usr/lib/.build-id/a0
/usr/lib/.build-id/a0/f341de401f5d02a6dd2f394166f3d3e5c74666
/usr/lib/.build-id/a7
/usr/lib/.build-id/a7/ec6bbaaaff962b17c131a3182414d4a91e9afa
/usr/lib/.build-id/cd
/usr/lib/.build-id/cd/05c2a836ac723f26280e49712bec5b7869447e
/usr/lib/.build-id/d0
/usr/lib/.build-id/d0/27bbfafe8f9ec7bf75f9a01ccb616d5ade4b46
/usr/lib/.build-id/e0
/usr/lib/.build-id/e0/780682ed981e459276b7cfb5df3e45dd686820
/usr/lib/.build-id/eb
/usr/lib/.build-id/eb/7536f85e9994ff76a623f361147ef6c55a75e1
/usr/lib/krb5
/usr/lib/krb5/plugins
/usr/lib/krb5/plugins/authdata
/usr/lib/krb5/plugins/kdb
/usr/lib/krb5/plugins/libkrb5
/usr/lib/krb5/plugins/preauth
/usr/lib/krb5/plugins/preauth/spake.so
/usr/lib/krb5/plugins/tls
/usr/lib/krb5/plugins/tls/k5tls.so
/usr/lib/libgssapi_krb5.so.2
/usr/lib/libgssapi_krb5.so.2.2
/usr/lib/libgssrpc.so.4
/usr/lib/libgssrpc.so.4.2
/usr/lib/libk5crypto.so.3
/usr/lib/libk5crypto.so.3.1
/usr/lib/libkdb5.so.10
/usr/lib/libkdb5.so.10.0
/usr/lib/libkrad.so.0
/usr/lib/libkrad.so.0.0
/usr/lib/libkrb5.so.3
/usr/lib/libkrb5.so.3.3
/usr/lib/libkrb5support.so.0
/usr/lib/libkrb5support.so.0.1
/usr/share/doc/krb5-libs
/usr/share/doc/krb5-libs/NOTICE
/usr/share/doc/krb5-libs/README
/usr/share/licenses/krb5-libs
/usr/share/licenses/krb5-libs/LICENSE
/usr/share/locale/de/LC_MESSAGES/mit-krb5.mo
/usr/share/locale/en_US/LC_MESSAGES/mit-krb5.mo
/usr/share/locale/ka/LC_MESSAGES/mit-krb5.mo
/usr/share/man/man5/.k5identity.5.gz
/usr/share/man/man5/.k5login.5.gz
/usr/share/man/man5/k5identity.5.gz
/usr/share/man/man5/k5login.5.gz
/usr/share/man/man5/krb5.conf.5.gz
/usr/share/man/man7/kerberos.7.gz
/var/kerberos
/var/kerberos/krb5
/var/kerberos/krb5/user

Generated by rpm2html 1.8.1

Fabrice Bellet, Sun Apr 28 01:19:27 2024