Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: krb5-server-ldap | Distribution: Fedora Project |
Version: 1.21.3 | Vendor: Fedora Project |
Release: 2.fc39 | Build date: Wed Oct 30 17:33:42 2024 |
Group: Unspecified | Build host: buildhw-x86-05.iad2.fedoraproject.org |
Size: 279753 | Source RPM: krb5-1.21.3-2.fc39.src.rpm |
Packager: Fedora Project | |
Url: https://web.mit.edu/kerberos/www/ | |
Summary: The LDAP storage plugin for the Kerberos 5 KDC |
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, and you wish to use a directory server to store the data for your realm, you need to install this package.
Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision
* Wed Oct 30 2024 Julien Rische <jrische@redhat.com> - 1.21.3-2 - libkrad: implement support for Message-Authenticator (CVE-2024-3596) Resolves: rhbz#2304071 - Fix various issues detected by static analysis Resolves: rhbz#2322704 - Remove RSA protocol for PKINIT Resolves: rhbz#2322706 - Make TCP waiting time configurable Resolves: rhbz#2322711 * Tue Jul 09 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1 - New upstream version (1.21.3) - CVE-2024-26458: Memory leak in src/lib/rpc/pmap_rmt.c Resolves: rhbz#2266732 - CVE-2024-26461: Memory leak in src/lib/gssapi/krb5/k5sealv3.c Resolves: rhbz#2266741 - CVE-2024-26462: Memory leak in src/kdc/ndr.c Resolves: rhbz#2266743 - Add missing SPDX license identifiers Resolves: rhbz#2265333 * Mon Jul 08 2024 Julien Rische <jrische@redhat.com> - 1.21.2-4 - CVE-2024-37370 CVE-2024-37371: GSS message token handling Resolves: rhbz#2294678 rhbz#2294680 - Fix double free in klist's show_ccache() Resolves: rhbz#2257301 - Do not include files with "~" termination in krb5-tests * Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3 - Fix double free in klist's show_ccache() Resolves: rhbz#2257301 - Store krb5-tests files in architecture-specific directories Resolves: rhbz#2244601 * Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2 - Use SPDX expression for license tag - Fix unimportant memory leaks Resolves: rhbz#2223274 * Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1 - New upstream version (1.21.2) - Fix double-free in KDC TGS processing (CVE-2023-39975) Resolves: rhbz#2229113 - Make tests compatible with Python 3.12 Resolves: rhbz#2224013 * Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2 - Replace file dependency with package name Resolves: rhbz#2216903 * Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1 - New upstream version (1.21) - Do not disable PKINIT if some of the well-known DH groups are unavailable Resolves: rhbz#2214297 - Make PKINIT CMS SHA-1 signature verification available in FIPS mode Resolves: rhbz#2214300 - Allow to set PAC ticket signature as optional Resolves: rhbz#2181311 - Add support for MS-PAC extended KDC signature (CVE-2022-37967) Resolves: rhbz#2166001 - Fix syntax error in aclocal.m4 Resolves: rhbz#2143306 * Tue Jan 31 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9 - Add support for MS-PAC extended KDC signature (CVE-2022-37967) Resolves: rhbz#2166001 * Mon Jan 30 2023 Julien Rische <jrische@redhat.com> - 1.20.1-8 - Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled - Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode * Thu Jan 19 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.20.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Wed Jan 18 2023 Julien Rische <jrische@redhat.com> - 1.20.1-6 - Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf - Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf Resolves: rhbz#2114771 * Mon Jan 09 2023 Julien Rische <jrische@redhat.com> - 1.20.1-5 - Strip debugging data from ksu executable file * Thu Jan 05 2023 Julien Rische <jrische@redhat.com> - 1.20.1-4 - Include missing OpenSSL FIPS header - Make tests compatible with sssd_krb5_locator_plugin.so * Tue Dec 06 2022 Julien Rische <jrische@redhat.com> - 1.20.1-3 - Enable TMT integration with Fedora CI * Thu Dec 01 2022 Alexander Bokovoy <abokovoy@redhat.com> - 1.20.1-2 - Bump KDB ABI version provide to 9.0 * Wed Nov 23 2022 Julien Rische <jrische@redhat.com> - 1.20.1-1 - New upstream version (1.20.1) Resolves: rhbz#2124463 - Restore "supportedCMSTypes" attribute in PKINIT preauth requests - Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms Resolves: rhbz#2114766 - Update error checking for OpenSSL CMS_verify Resolves: rhbz#2119704 - Remove invalid password expiry warning Resolves: rhbz#2129113 * Wed Nov 09 2022 Julien Rische <jrische@redhat.com> - 1.19.2-13 - Fix integer overflows in PAC parsing (CVE-2022-42898) Resolves: rhbz#2143011
/usr/lib/.build-id /usr/lib/.build-id/5d /usr/lib/.build-id/5d/12e86ec084325f1443b3fb80128dfe2730d6a8 /usr/lib/.build-id/a2 /usr/lib/.build-id/a2/d2fe6a5b703bae4a3b4c2fa7a5b38d066e0aa2 /usr/lib/.build-id/a5/4cdd6e8bcea11f79081c448ff5b423867be521 /usr/lib64/krb5 /usr/lib64/krb5/plugins /usr/lib64/krb5/plugins/kdb /usr/lib64/krb5/plugins/kdb/kldap.so /usr/lib64/libkdb_ldap.so /usr/lib64/libkdb_ldap.so.1 /usr/lib64/libkdb_ldap.so.1.0 /usr/sbin/kdb5_ldap_util /usr/share/doc/krb5-server-ldap /usr/share/doc/krb5-server-ldap/60kerberos.ldif /usr/share/doc/krb5-server-ldap/kerberos.ldif /usr/share/doc/krb5-server-ldap/kerberos.schema /usr/share/man/man8/kdb5_ldap_util.8.gz
Generated by rpm2html 1.8.1
Fabrice Bellet, Wed Nov 27 03:30:50 2024