[ All A B C D E F G H I J K L M N O P Q R S T U V W X Y Z ]
×

Project krb5-1.21.1-8.el9_6

Name krb5
Epoch 0
Version 1.21.1
Release 8.el9_6
Website/URL https://web.mit.edu/kerberos/www/
License MIT
Build Time 2025-07-22 18:46:59
Build Host certified-builder01.msvsphere-os.ru
Summary The Kerberos network authentication system
Repositories Updates
Description Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of sending passwords over the network in unencrypted form.
Errata
× Full screenshot
Found 1 old version
Packages link
Package Summary SHA-256 checksum
x86_64
krb5-libs-1.21.1-8.el9_6.x86_64 The non-admin shared libraries used by Kerberos 5 1ff4dd2adf71ea8a1b0d513c195c700cd06746073b2458af295d0e42777863ea download
krb5-pkinit-1.21.1-8.el9_6.x86_64 The PKINIT module for Kerberos 5 084ff151c059c62c785a9f94ff07092e4f315c09a17d883b0c90cee59ff9adc3 download
krb5-server-1.21.1-8.el9_6.x86_64 The KDC and related programs for Kerberos 5 81d7aaf446078221731b78bf53cff4e68387446e57c7fc56cfdfaa9492fe82ce download
krb5-workstation-1.21.1-8.el9_6.x86_64 Kerberos 5 programs for use on workstations 12349fc813ef471b37c733a86eb328bd619b3a8cad00e3d9f507e4cfdb6d4826 download
libkadm5-1.21.1-8.el9_6.x86_64 Kerberos 5 Administrative libraries 04830477910a8f6de6e919b5273cfca445e56005def6efe962098b8e4644779d download
krb5-devel-1.21.1-8.el9_6.x86_64 Development files needed to compile Kerberos 5 programs 4a78000823e3780a3ce543d24935b297a4f69bf4955c1cca99da9ec3245393d3 download
krb5-server-ldap-1.21.1-8.el9_6.x86_64 The LDAP storage plugin for the Kerberos 5 KDC 7c67d37add91f8a1011080e494bd4627a72910226bc516429155767f5d3998fe download
krb5-tests-1.21.1-8.el9_6.x86_64 Test sources for krb5 build 66efc624668c3a6780f3d57d2c4f22999580cf0a7f7ce6e41ecb946ee601a049 download
i686
krb5-libs-1.21.1-8.el9_6.i686 The non-admin shared libraries used by Kerberos 5 c7f3afbffe0dac98a42ad76ee1f1cc76b29d6fa3c9ce17aa9f53f271bd7c0c53 download
krb5-pkinit-1.21.1-8.el9_6.i686 The PKINIT module for Kerberos 5 d36cccb6d553b8a5681d5748a1454fc3dbc8190f5606f67b1e065d2eac3ba107 download
krb5-server-1.21.1-8.el9_6.i686 The KDC and related programs for Kerberos 5 91d8717a5bff48727dab1fe62778f5ac72ae9e330b21f8a4aaa5e666292b52b4 download
libkadm5-1.21.1-8.el9_6.i686 Kerberos 5 Administrative libraries 7530fff8a65d24630fdd2e9984cd790e02124e6b6f38474e9bdb652b31ccc825 download
src
krb5-1.21.1-8.el9_6.src The Kerberos network authentication system 737d028b796eb84010f875166b2679a51644f2ab47dcc66135af9aff75fddd92 download
Changelog link 
* Fri Apr 18 2025 Julien Rische <jrische@redhat.com> - 1.21.1-9
- Do not block HMAC-MD4/5 in FIPS mode
  Resolves: RHEL-88704
- Don't issue RC4 session keys by default (CVE-2025-3576)
  Resolves: RHEL-88048
- Add PKINIT paChecksum2 from MS-PKCA v20230920
  Resolves: RHEL-82647

* Tue Mar 25 2025 Julien Rische <jrische@redhat.com> - 1.21.1-7
- Add dedicated tests sub-package

* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.1-6
- Prevent overflow when calculating ulog block size (CVE-2025-24528)
  Resolves: RHEL-76759

* Fri Jan 17 2025 Julien Rische <jrische@redhat.com> - 1.21.1-5
- Support PKCS11 EC client certs in PKINIT
  Resolves: RHEL-74374
- kdb5_util: fix DB entry flags on modification
  Resolves: RHEL-56059
- Add ECDH support for PKINIT (RFC5349)
  Resolves: RHEL-4902

* Thu Oct 17 2024 Julien Rische <jrische@redhat.com> - 1.21.1-4
- libkrad: implement support for Message-Authenticator (CVE-2024-3596)
  Resolves: RHEL-55423
- Fix various issues detected by static analysis
  Resolves: RHEL-58216
- Remove RSA protocol for PKINIT
  Resolves: RHEL-15323

* Fri Jul 05 2024 Julien Rische <jrische@redhat.com> - 1.21.1-3
- CVE-2024-37370 CVE-2024-37371
  Fix vulnerabilities in GSS message token handling
  Resolves: RHEL-45402 RHEL-45392

* Wed Mar 20 2024 Julien Rische <jrische@redhat.com> - 1.21.1-2
- Fix memory leak in GSSAPI interface
  Resolves: RHEL-27251
- Fix memory leak in PMAP RPC interface
  Resolves: RHEL-27245
- Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
  Resolves: RHEL-27253
- Make TCP waiting time configurable
  Resolves: RHEL-17132

* Tue Aug 08 2023 Julien Rische <jrische@redhat.com> - 1.21.1-1
- New upstream version (1.21.1)
- Fix double-free in KDC TGS processing (CVE-2023-39975)
- Add support for "pac_privsvr_enctype" KDB string attribute
  Resolves: rhbz#2060421

* Thu Jun 08 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
- Do not disable PKINIT if some of the well-known DH groups are unavailable
  Resolves: rhbz#2187722
- Make PKINIT CMS SHA-1 signature verification available in FIPS mode
  Resolves: rhbz#2155607
- Allow to set PAC ticket signature as optional
  Resolves: rhbz#2178298