Name: krb5-server	Distribution: Fedora Project
Version: 1.21.3	Vendor: Fedora Project
Release: 6.fc42	Build date: Fri Jun 6 14:49:05 2025
Group: Unspecified	Build host: buildvm-s390x-08.s390.fedoraproject.org
Size: 760971	Source RPM: krb5-1.21.3-6.fc42.src.rpm
Packager: Fedora Project
Url: https://web.mit.edu/kerberos/www/
Summary: The KDC and related programs for Kerberos 5

Kerberos is a network authentication system. The krb5-server package
contains the programs that must be installed on a Kerberos 5 key
distribution center (KDC).  If you are installing a Kerberos 5 KDC,
you need to install this package (in other words, most people should
NOT install this package).

Provides

Requires

License

Brian-Gladman-2-Clause AND BSD-2-Clause AND (BSD-2-Clause OR GPL-2.0-or-later) AND BSD-2-Clause-first-lines AND BSD-3-Clause AND BSD-4-Clause AND CMU-Mach-nodoc AND FSFULLRWD AND HPND AND HPND-export2-US AND HPND-export-US AND HPND-export-US-acknowledgement AND HPND-export-US-modify AND ISC AND MIT AND MIT-CMU AND OLDAP-2.8 AND OpenVision

Changelog

* Wed Jun 04 2025 Julien Rische <jrische@redhat.com> - 1.21.3-6
  - Do not block HMAC-MD4/5 in FIPS mode
    Resolves: rhbz#2370259
  - PKINIT: implement paChecksum2 from MS-PKCA v20230920
    Resolves: rhbz#2357215
  - Disallow RC4 HMAC-MD5 session keys by default (CVE-2025-3576)
    Resolves: rhbz#2359705
* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.3-5
  - Prevent overflow when calculating ulog block size (CVE-2025-24528)
    Resolves: rhbz#2342798
  - Support PKCS11 EC client certs in PKINIT
    Resolves: rhbz#2341962
  - kdb5_util: fix DB entry flags on modification
    Resolves: rhbz#2336555
  - Add ECDH support for PKINIT (RFC5349)
    Resolves: rhbz#2214326
  - Remove dependency of krb5-libs on gawk and sed
    Resolves: rhbz#2323859
* Fri Jan 17 2025 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.3-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Oct 30 2024 Julien Rische <jrische@redhat.com> - 1.21.3-3
  - libkrad: implement support for Message-Authenticator (CVE-2024-3596)
    Resolves: rhbz#2304071
  - Fix various issues detected by static analysis
    Resolves: rhbz#2322704
  - Remove RSA protocol for PKINIT
    Resolves: rhbz#2322706
  - Make TCP waiting time configurable
    Resolves: rhbz#2322711
* Thu Jul 18 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.3-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Tue Jul 09 2024 Julien Rische <jrische@redhat.com> - 1.21.3-1
  - New upstream version (1.21.3)
  - CVE-2024-26458: Memory leak in src/lib/rpc/pmap_rmt.c
    Resolves: rhbz#2266732
  - CVE-2024-26461: Memory leak in src/lib/gssapi/krb5/k5sealv3.c
    Resolves: rhbz#2266741
  - CVE-2024-26462: Memory leak in src/kdc/ndr.c
    Resolves: rhbz#2266743
  - Add missing SPDX license identifiers
    Resolves: rhbz#2265333
* Mon Jul 08 2024 Julien Rische <jrische@redhat.com> - 1.21.2-6
  - CVE-2024-37370 CVE-2024-37371: GSS message token handling
    Resolves: rhbz#2294678 rhbz#2294680
  - Fix double free in klist's show_ccache()
    Resolves: rhbz#2257301
  - Do not include files with "~" termination in krb5-tests
* Thu Jan 25 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-5
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1.21.2-4
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Wed Jan 17 2024 Julien Rische <jrische@redhat.com> - 1.21.2-3
  - Fix double free in klist's show_ccache()
    Resolves: rhbz#2257301
  - Store krb5-tests files in architecture-specific directories
    Resolves: rhbz#2244601
* Tue Oct 10 2023 Julien Rische <jrische@redhat.com> - 1.21.2-2
  - Use SPDX expression for license tag
  - Fix unimportant memory leaks
    Resolves: rhbz#2223274
* Wed Aug 16 2023 Julien Rische <jrische@redhat.com> - 1.21.2-1
  - New upstream version (1.21.2)
  - Fix double-free in KDC TGS processing (CVE-2023-39975)
    Resolves: rhbz#2229113
  - Make tests compatible with Python 3.12
    Resolves: rhbz#2224013
* Thu Jul 20 2023 Fedora Release Engineering <releng@fedoraproject.org> - 1.21-3
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jun 29 2023 Marek Blaha <mblaha@redhat.com> - 1.21-2
  - Replace file dependency with package name
    Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische <jrische@redhat.com> - 1.21-1
  - New upstream version (1.21)
  - Do not disable PKINIT if some of the well-known DH groups are unavailable
    Resolves: rhbz#2214297
  - Make PKINIT CMS SHA-1 signature verification available in FIPS mode
    Resolves: rhbz#2214300
  - Allow to set PAC ticket signature as optional
    Resolves: rhbz#2181311
  - Add support for MS-PAC extended KDC signature (CVE-2022-37967)
    Resolves: rhbz#2166001
  - Fix syntax error in aclocal.m4
    Resolves: rhbz#2143306

Files

/etc/logrotate.d/kadmind
/etc/logrotate.d/krb5kdc
/etc/sysconfig/kadmin
/etc/sysconfig/kprop
/etc/sysconfig/krb5kdc
/usr/bin/kadmin.local
/usr/bin/kadmind
/usr/bin/kdb5_util
/usr/bin/kprop
/usr/bin/kpropd
/usr/bin/kproplog
/usr/bin/krb5kdc
/usr/bin/sclient
/usr/bin/sserver
/usr/lib/.build-id
/usr/lib/.build-id/25
/usr/lib/.build-id/25/003f5b98a380e09570717a0a32c1242ad88e25
/usr/lib/.build-id/36
/usr/lib/.build-id/36/55f20bbee2ab505835fa7a66f4a3b94a49961f
/usr/lib/.build-id/4b
/usr/lib/.build-id/4b/8478f7c36c68b784f521d4cca204ef69da4e54
/usr/lib/.build-id/50
/usr/lib/.build-id/50/8075b74f8b79e1f83042aa936eeb7f5a52f911
/usr/lib/.build-id/5d
/usr/lib/.build-id/5d/f6f64c2b712cb4da8b3aa5354aca527a3e9584
/usr/lib/.build-id/7f
/usr/lib/.build-id/7f/0de7486e110bd32f141d0560f36a5bec109759
/usr/lib/.build-id/93
/usr/lib/.build-id/93/805f6b3e222c4dd31d53016df1d231805fc068
/usr/lib/.build-id/b7
/usr/lib/.build-id/b7/a7b3b6f43094d3c0fdd9193f2de118b278bde9
/usr/lib/.build-id/c4
/usr/lib/.build-id/c4/683506da9635f9774d8bb29ebe082720fadc3a
/usr/lib/.build-id/c6
/usr/lib/.build-id/c6/d84d8f2263a590d3241ca8f88fa7568a740d88
/usr/lib/.build-id/d2
/usr/lib/.build-id/d2/6a16b87de30e81d4223c4c0bb032386a0f4a09
/usr/lib/.build-id/e8
/usr/lib/.build-id/e8/a51e20b95a2aa48c52e40c12318b3093b2dcb5
/usr/lib/systemd/system/kadmin.service
/usr/lib/systemd/system/kprop.service
/usr/lib/systemd/system/krb5kdc.service
/usr/lib/tmpfiles.d/krb5-krb5kdc.conf
/usr/lib64/krb5
/usr/lib64/krb5/plugins
/usr/lib64/krb5/plugins/authdata
/usr/lib64/krb5/plugins/kdb
/usr/lib64/krb5/plugins/kdb/db2.so
/usr/lib64/krb5/plugins/kdb/klmdb.so
/usr/lib64/krb5/plugins/preauth
/usr/lib64/krb5/plugins/preauth/otp.so
/usr/share/doc/krb5-server
/usr/share/doc/krb5-server/kdc.conf
/usr/share/man/man1/sclient.1.gz
/usr/share/man/man5/kadm5.acl.5.gz
/usr/share/man/man5/kdc.conf.5.gz
/usr/share/man/man8/kadmin.local.8.gz
/usr/share/man/man8/kadmind.8.gz
/usr/share/man/man8/kdb5_util.8.gz
/usr/share/man/man8/kprop.8.gz
/usr/share/man/man8/kpropd.8.gz
/usr/share/man/man8/kproplog.8.gz
/usr/share/man/man8/krb5kdc.8.gz
/usr/share/man/man8/sserver.8.gz
/var/kerberos
/var/kerberos/krb5kdc
/var/kerberos/krb5kdc/kadm5.acl
/var/kerberos/krb5kdc/kdc.conf
/var/run/krb5kdc

Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Jun 14 03:41:01 2025

krb5-server-1.21.3-6.fc42 RPM for s390x

From Fedora 42 updates for s390x / Packages / k

Provides

Requires

License

Changelog

Files