krb5-libs-1.21.3-11.el10 RPM for ppc64le

From CentOS Stream 10 BaseOS for ppc64le

Kerberos is a network authentication system. The krb5-libs package
contains the shared libraries needed by Kerberos 5. If you are using
Kerberos, you need to install this package.

Provides

• krb5-libs
• config(krb5-libs)
• krb5-libs(ppc-64)
• libgssapi_krb5.so.2()(64bit)
• libgssapi_krb5.so.2(HIDDEN)(64bit)
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit)
• libgssrpc.so.4()(64bit)
• libgssrpc.so.4(HIDDEN)(64bit)
• libgssrpc.so.4(gssrpc_4_MIT)(64bit)
• libk5crypto.so.3()(64bit)
• libk5crypto.so.3(HIDDEN)(64bit)
• libk5crypto.so.3(k5crypto_3_MIT)(64bit)
• libkdb5.so.10()(64bit)
• libkdb5.so.10(HIDDEN)(64bit)
• libkdb5.so.10(kdb5_10_MIT)(64bit)
• libkrad.so.0()(64bit)
• libkrad.so.0(HIDDEN)(64bit)
• libkrad.so.0(krad_0_MIT)(64bit)
• libkrb5.so.3()(64bit)
• libkrb5.so.3(HIDDEN)(64bit)
• libkrb5.so.3(krb5_3_MIT)(64bit)
• libkrb5support.so.0()(64bit)
• libkrb5support.so.0(HIDDEN)(64bit)
• libkrb5support.so.0(krb5support_0_MIT)(64bit)

Requires

• /etc/crypto-policies/back-ends/krb5.config
• config(krb5-libs) = 1.21.3-11.el10
• coreutils
• gawk
• keyutils-libs >= 1.5.8
• ld64.so.2()(64bit)
• ld64.so.2(GLIBC_2.22)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.25)(64bit)
• libc.so.6(GLIBC_2.27)(64bit)
• libc.so.6(GLIBC_2.32)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libc.so.6(GLIBC_2.38)(64bit)
• libc.so.6(GLIBC_ABI_DT_RELR)(64bit)
• libcom_err.so.2()(64bit)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libgssapi_krb5.so.2()(64bit)
• libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit)
• libgssrpc.so.4()(64bit)
• libgssrpc.so.4(gssrpc_4_MIT)(64bit)
• libk5crypto.so.3()(64bit)
• libk5crypto.so.3(k5crypto_3_MIT)(64bit)
• libkeyutils.so.1()(64bit)
• libkeyutils.so.1(KEYUTILS_0.3)(64bit)
• libkeyutils.so.1(KEYUTILS_1.0)(64bit)
• libkeyutils.so.1(KEYUTILS_1.5)(64bit)
• libkrb5.so.3()(64bit)
• libkrb5.so.3(krb5_3_MIT)(64bit)
• libkrb5support.so.0()(64bit)
• libkrb5support.so.0(krb5support_0_MIT)(64bit)
• libresolv.so.2()(64bit)
• libresolv.so.2(GLIBC_2.17)(64bit)
• libselinux.so.1()(64bit)
• libselinux.so.1(LIBSELINUX_1.0)(64bit)
• libssl.so.3()(64bit)
• libssl.so.3(OPENSSL_3.0.0)(64bit)
• libverto.so.1()(64bit)
• openssl-libs >= 1:3.0.0
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)
• sed

License

Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision

Changelog

* Tue Apr 28 2026 Julien Rische <jrische@redhat.com> - 1.21.3-11
  - Fix NegoEx parsing vulnerabilities (CVE-2026-40355, CVE-2026-40356)
    Resolves: RHEL-171587 RHEL-171595
* Mon Mar 23 2026 Julien Rische <jrische@redhat.com> - 1.21.3-10
  - Fix S4U2Self ignoring time_req when acquiring impersonated credentials
    Resolves: RHEL-155169
* Fri Jan 30 2026 Julien Rische <jrische@redhat.com> - 1.21.3-9
  - krad: packet ID fetched from uninitialized variable
    Resolves: RHEL-145356
  - Create sub-package for xrealmauthz KDC plugin
    Resolves: RHEL-145358
  - Improving kerberos ulog resize efficiency
    Resolves: RHEL-145397
* Mon Apr 28 2025 Julien Rische <jrische@redhat.com> - 1.21.3-8
  - Do not block HMAC-MD4/5 in FIPS mode
    Resolves: RHEL-88705
  - Don't issue RC4 session keys by default (CVE-2025-3576)
    Resolves: RHEL-88047
  - Add PKINIT paChecksum2 from MS-PKCA v20230920
    Resolves: RHEL-74295
* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.3-7
  - Prevent overflow when calculating ulog block size (CVE-2025-24528)
    Resolves: RHEL-76758
* Fri Jan 17 2025 Julien Rische <jrische@redhat.com> - 1.21.3-6
  - Support PKCS11 EC client certs in PKINIT
    Resolves: RHEL-74373
  - kdb5_util: fix DB entry flags on modification
    Resolves: RHEL-56058
  - Add ECDH support for PKINIT (RFC5349)
    Resolves: RHEL-71881
* Mon Nov 04 2024 Julien Rische <jrische@redhat.com> - 1.21.3-5
  - Make test dependencies optional if not part of CentOS/RHEL 10
    Resolves: RHEL-65724
* Wed Oct 30 2024 Julien Rische <jrische@redhat.com> - 1.21.3-4
  - libkrad: implement support for Message-Authenticator (CVE-2024-3596)
    Resolves: RHEL-55427
  - Fix various issues detected by static analysis
    Resolves: RHEL-45165
  - Remove RSA protocol for PKINIT
    Resolves: RHEL-56070
* Tue Oct 29 2024 Troy Dawson <tdawson@redhat.com> - 1.21.3-3
  - Bump release for October 2024 mass rebuild:
    Resolves: RHEL-64018
* Fri Jul 12 2024 Julien Rische <jrische@redhat.com> - 1.21.3-2
  - Do not include files with "~" termination in krb5-tests
    Resolves: RHEL-45995
* Fri Jul 12 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
  - New upstream version (1.21.3)
  - CVE-2024-37370 CVE-2024-37371
    Fix vulnerabilities in GSS message token handling
    Resolves: RHEL-45387 RHEL-45378
  - Fix memory leak in GSSAPI interface
    Resolves: RHEL-47284
  - Fix memory leak in PMAP RPC interface
    Resolves: RHEL-47287
  - Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
    Resolves: RHEL-47285
  - Make TCP waiting time configurable
    Resolves: RHEL-47278
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 1.21.2-7
  - Bump release for June 2024 mass rebuild
* Wed Jun 19 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
  - Add missing SPDX license identifiers
    Resolves: RHEL-44383

Files

/etc/gss
/etc/gss/mech.d
/etc/krb5.conf
/etc/krb5.conf.d
/etc/krb5.conf.d/crypto-policies
/usr/lib/.build-id
/usr/lib/.build-id/24
/usr/lib/.build-id/24/fe911afa1f909f0056c4b2f205e92551e2dff2
/usr/lib/.build-id/5a
/usr/lib/.build-id/5a/5130da5ff6370621036a49950fe66e31ffa841
/usr/lib/.build-id/6b
/usr/lib/.build-id/6b/4e96132a940b463653da3a8727a2ff143f337e
/usr/lib/.build-id/8e
/usr/lib/.build-id/8e/9c9d0edda8eeb0969305913a9845c15330aa31
/usr/lib/.build-id/a5
/usr/lib/.build-id/a5/9c6215958f720296c3c9cdc65d27eb085f8666
/usr/lib/.build-id/d1
/usr/lib/.build-id/d1/e6a740dfdb4e8c86fb5325f7a44af61cda5cf2
/usr/lib/.build-id/df
/usr/lib/.build-id/df/9dc503d38fa9bc154cade27c6ecbde2a3b01ce
/usr/lib/.build-id/e4
/usr/lib/.build-id/e4/9bd9d72c0bc8d125d2baf49d5cd1693d367ebf
/usr/lib/.build-id/f2
/usr/lib/.build-id/f2/85ff9e4420353639b6968af02ef60305f8118e
/usr/lib64/krb5
/usr/lib64/krb5/plugins
/usr/lib64/krb5/plugins/authdata
/usr/lib64/krb5/plugins/kdb
/usr/lib64/krb5/plugins/kdcpolicy
/usr/lib64/krb5/plugins/libkrb5
/usr/lib64/krb5/plugins/preauth
/usr/lib64/krb5/plugins/preauth/spake.so
/usr/lib64/krb5/plugins/tls
/usr/lib64/krb5/plugins/tls/k5tls.so
/usr/lib64/libgssapi_krb5.so.2
/usr/lib64/libgssapi_krb5.so.2.2
/usr/lib64/libgssrpc.so.4
/usr/lib64/libgssrpc.so.4.2
/usr/lib64/libk5crypto.so.3
/usr/lib64/libk5crypto.so.3.1
/usr/lib64/libkdb5.so.10
/usr/lib64/libkdb5.so.10.0
/usr/lib64/libkrad.so.0
/usr/lib64/libkrad.so.0.0
/usr/lib64/libkrb5.so.3
/usr/lib64/libkrb5.so.3.3
/usr/lib64/libkrb5support.so.0
/usr/lib64/libkrb5support.so.0.1
/usr/share/doc/krb5-libs
/usr/share/doc/krb5-libs/NOTICE
/usr/share/doc/krb5-libs/README
/usr/share/licenses/krb5-libs
/usr/share/licenses/krb5-libs/LICENSE
/usr/share/locale/de/LC_MESSAGES/mit-krb5.mo
/usr/share/locale/en_US/LC_MESSAGES/mit-krb5.mo
/usr/share/locale/ka/LC_MESSAGES/mit-krb5.mo
/usr/share/man/man5/.k5identity.5.gz
/usr/share/man/man5/.k5login.5.gz
/usr/share/man/man5/k5identity.5.gz
/usr/share/man/man5/k5login.5.gz
/usr/share/man/man5/krb5.conf.5.gz
/usr/share/man/man7/kerberos.7.gz
/var/kerberos
/var/kerberos/krb5
/var/kerberos/krb5/user

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue May 5 03:04:56 2026