| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: krb5-server | Distribution: CentOS |
| Version: 1.21.1 | Vendor: CentOS |
| Release: 8.el9 | Build date: Mon May 5 18:28:02 2025 |
| Group: Unspecified | Build host: x86-02.stream.rdu2.redhat.com |
| Size: 783750 | Source RPM: krb5-1.21.1-8.el9.src.rpm |
| Packager: builder@centos.org | |
| Url: https://web.mit.edu/kerberos/www/ | |
| Summary: The KDC and related programs for Kerberos 5 | |
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, you need to install this package (in other words, most people should NOT install this package).
MIT
* Fri Apr 18 2025 Julien Rische <jrische@redhat.com> - 1.21.1-9
- Do not block HMAC-MD4/5 in FIPS mode
Resolves: RHEL-88704
- Don't issue RC4 session keys by default (CVE-2025-3576)
Resolves: RHEL-88048
- Add PKINIT paChecksum2 from MS-PKCA v20230920
Resolves: RHEL-82647
* Tue Mar 25 2025 Julien Rische <jrische@redhat.com> - 1.21.1-7
- Add dedicated tests sub-package
* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.1-6
- Prevent overflow when calculating ulog block size (CVE-2025-24528)
Resolves: RHEL-76759
* Fri Jan 17 2025 Julien Rische <jrische@redhat.com> - 1.21.1-5
- Support PKCS11 EC client certs in PKINIT
Resolves: RHEL-74374
- kdb5_util: fix DB entry flags on modification
Resolves: RHEL-56059
- Add ECDH support for PKINIT (RFC5349)
Resolves: RHEL-4902
* Thu Oct 17 2024 Julien Rische <jrische@redhat.com> - 1.21.1-4
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
Resolves: RHEL-55423
- Fix various issues detected by static analysis
Resolves: RHEL-58216
- Remove RSA protocol for PKINIT
Resolves: RHEL-15323
* Fri Jul 05 2024 Julien Rische <jrische@redhat.com> - 1.21.1-3
- CVE-2024-37370 CVE-2024-37371
Fix vulnerabilities in GSS message token handling
Resolves: RHEL-45402 RHEL-45392
* Wed Mar 20 2024 Julien Rische <jrische@redhat.com> - 1.21.1-2
- Fix memory leak in GSSAPI interface
Resolves: RHEL-27251
- Fix memory leak in PMAP RPC interface
Resolves: RHEL-27245
- Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
Resolves: RHEL-27253
- Make TCP waiting time configurable
Resolves: RHEL-17132
* Tue Aug 08 2023 Julien Rische <jrische@redhat.com> - 1.21.1-1
- New upstream version (1.21.1)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
- Add support for "pac_privsvr_enctype" KDB string attribute
Resolves: rhbz#2060421
* Thu Jun 08 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
- Do not disable PKINIT if some of the well-known DH groups are unavailable
Resolves: rhbz#2187722
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
Resolves: rhbz#2155607
- Allow to set PAC ticket signature as optional
Resolves: rhbz#2178298
/etc/logrotate.d/kadmind /etc/logrotate.d/krb5kdc /etc/sysconfig/kadmin /etc/sysconfig/kprop /etc/sysconfig/krb5kdc /usr/bin/sclient /usr/lib/.build-id /usr/lib/.build-id/17 /usr/lib/.build-id/17/48037ba2161f22a0d819e2c46f342a2d07b7f1 /usr/lib/.build-id/1f /usr/lib/.build-id/1f/64ddf42bd98744802e26c3cc67b2ac4805481f /usr/lib/.build-id/32 /usr/lib/.build-id/32/0dd08d4d177fb0422dc768b3a14f2191031666 /usr/lib/.build-id/37 /usr/lib/.build-id/37/79987fb5b8f900f9e53c3b3b3606eec77e0a73 /usr/lib/.build-id/3f /usr/lib/.build-id/3f/f498e9ba1d79008afa8f97aee71ab6430da4a4 /usr/lib/.build-id/4b /usr/lib/.build-id/4b/d49e0064ef34aad2b431be23bc3237dab17107 /usr/lib/.build-id/6d /usr/lib/.build-id/6d/abb6fdbbba18311d3bb6e518cc03b516340df8 /usr/lib/.build-id/9c /usr/lib/.build-id/9c/3a1d4bfc4442962587b8d8cd67ec57ddaf4cdd /usr/lib/.build-id/9c/74c770d9d2dbf66f194556e90ee4139105a57a /usr/lib/.build-id/a2 /usr/lib/.build-id/a2/2f4d83d7f411247eaa44503626a5f703ed295e /usr/lib/.build-id/a4 /usr/lib/.build-id/a4/1521e565bd0f53eb083fa5ff8f143d7c45086a /usr/lib/.build-id/e5 /usr/lib/.build-id/e5/eb6ed8730ec966625a47c817cb150df3525202 /usr/lib/krb5 /usr/lib/krb5/plugins /usr/lib/krb5/plugins/authdata /usr/lib/krb5/plugins/kdb /usr/lib/krb5/plugins/kdb/db2.so /usr/lib/krb5/plugins/kdb/klmdb.so /usr/lib/krb5/plugins/preauth /usr/lib/krb5/plugins/preauth/otp.so /usr/lib/systemd/system/kadmin.service /usr/lib/systemd/system/kprop.service /usr/lib/systemd/system/krb5kdc.service /usr/lib/tmpfiles.d/krb5-krb5kdc.conf /usr/sbin/kadmin.local /usr/sbin/kadmind /usr/sbin/kdb5_util /usr/sbin/kprop /usr/sbin/kpropd /usr/sbin/kproplog /usr/sbin/krb5kdc /usr/sbin/sserver /usr/share/doc/krb5-server /usr/share/doc/krb5-server/kdc.conf /usr/share/man/man1/sclient.1.gz /usr/share/man/man5/kadm5.acl.5.gz /usr/share/man/man5/kdc.conf.5.gz /usr/share/man/man8/kadmin.local.8.gz /usr/share/man/man8/kadmind.8.gz /usr/share/man/man8/kdb5_util.8.gz /usr/share/man/man8/kprop.8.gz /usr/share/man/man8/kpropd.8.gz /usr/share/man/man8/kproplog.8.gz /usr/share/man/man8/krb5kdc.8.gz /usr/share/man/man8/sserver.8.gz /var/kerberos /var/kerberos/krb5kdc /var/kerberos/krb5kdc/kadm5.acl /var/kerberos/krb5kdc/kdc.conf /var/run/krb5kdc
Generated by rpm2html 1.8.1
Fabrice Bellet, Thu Jun 19 01:53:52 2025