SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for krb5-devel-1.21-3.fc38.x86_64.rpm :

* Tue Aug 08 2023 Julien Rische - 1.21-3- Fix double-free in KDC TGS processing (CVE-2023-39975)
* Thu Jun 29 2023 Marek Blaha - 1.21-2- Replace file dependency with package name Resolves: rhbz#2216903
* Mon Jun 12 2023 Julien Rische - 1.21-1- New upstream version (1.21)- Do not disable PKINIT if some of the well-known DH groups are unavailable Resolves: rhbz#2214297- Make PKINIT CMS SHA-1 signature verification available in FIPS mode Resolves: rhbz#2214300- Allow to set PAC ticket signature as optional Resolves: rhbz#2181311- Add support for MS-PAC extended KDC signature (CVE-2022-37967) Resolves: rhbz#2166001- Fix syntax error in aclocal.m4 Resolves: rhbz#2143306
* Tue Jan 31 2023 Julien Rische - 1.20.1-9- Add support for MS-PAC extended KDC signature (CVE-2022-37967) Resolves: rhbz#2166001
* Mon Jan 30 2023 Julien Rische - 1.20.1-8- Bypass FIPS restrictions to use KRB5KDF in case AES SHA-1 HMAC is enabled- Lazily load MD4/5 from OpenSSL if using RADIUS or RC4 enctype in FIPS mode
* Thu Jan 19 2023 Fedora Release Engineering - 1.20.1-7- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Wed Jan 18 2023 Julien Rische - 1.20.1-6- Set aes256-cts-hmac-sha384-192 as EXAMLE.COM master key in kdc.conf- Add AES SHA-2 HMAC family as EXAMPLE.COM supported etypes in kdc.conf Resolves: rhbz#2114771
* Mon Jan 09 2023 Julien Rische - 1.20.1-5- Strip debugging data from ksu executable file
* Thu Jan 05 2023 Julien Rische - 1.20.1-4- Include missing OpenSSL FIPS header- Make tests compatible with sssd_krb5_locator_plugin.so
* Tue Dec 06 2022 Julien Rische - 1.20.1-3- Enable TMT integration with Fedora CI
* Thu Dec 01 2022 Alexander Bokovoy - 1.20.1-2- Bump KDB ABI version provide to 9.0
* Wed Nov 23 2022 Julien Rische - 1.20.1-1- New upstream version (1.20.1) Resolves: rhbz#2124463- Restore \"supportedCMSTypes\" attribute in PKINIT preauth requests- Set SHA-512 or SHA-256 with RSA as preferred CMS signature algorithms Resolves: rhbz#2114766- Update error checking for OpenSSL CMS_verify Resolves: rhbz#2119704- Remove invalid password expiry warning Resolves: rhbz#2129113
* Wed Nov 09 2022 Julien Rische - 1.19.2-13- Fix integer overflows in PAC parsing (CVE-2022-42898) Resolves: rhbz#2143011
* Tue Aug 02 2022 Andreas Schneider - 1.19.2-12- Use baserelease to set the release number- Do not define netlib, but use autoconf detection for res_
* functions- Add missing BR for resolv_wrapper to run t_discover_uri.py
* Thu Jul 21 2022 Fedora Release Engineering - 1.19.2-11.1- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Wed Jun 15 2022 Julien Rische - 1.19.2-11- Allow libkrad UDP/TCP connection to localhost in FIPS mode Resolves: rhbz#2082189- Read GSS configuration files with mtime 0
* Mon May 02 2022 Julien Rische - 1.19.2-10- Use p11-kit as default PKCS11 module Resolves: rhbz#2073274- Try harder to avoid password change replay errors Resolves: rhbz#2072059
* Tue Apr 05 2022 Alexander Bokovoy - 1.19.2-9- Fix libkrad client cleanup- Fixes rhbz#2072059
* Tue Apr 05 2022 Alexander Bokovoy - 1.19.2-8- Allow use of larger RADIUS attributes in krad library
* Wed Mar 23 2022 Julien Rische - 1.19.2-7- Use SHA-256 instead of SHA-1 for PKINIT CMS digest
* Tue Feb 08 2022 Zbigniew Jędrzejewski-Szmek - 1.19.2-6- Drop old trigger scriplet- Reenable package notes and strip LDFLAGS from krb5-config (rhbz#2048909)
* Wed Feb 02 2022 Alexander Bokovoy - 1.19.2-5- Temporarily remove package note to unblock krb5-dependent packages Resolves: rhbz#2048909
* Thu Jan 20 2022 Fedora Release Engineering - 1.19.2-4.1- Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
* Fri Dec 03 2021 Antonio Torres - 1.19.2-4- Add patches to support OpenSLL 3.0.0- Remove TCL-based libkadm5 API tests
* Tue Sep 14 2021 Sahana Prasad - 1.19.2-3.1- Rebuilt with OpenSSL 3.0.0
* Tue Aug 24 2021 Robbie Harwood - 1.19.2-3- Remove -specs= from krb5-config output
* Thu Aug 19 2021 Robbie Harwood - 1.19.2-2- Fix KDC null deref on TGS inner body null server (CVE-2021-37750)
 
ICM