Name: | krb5-workstation |
---|---|
Version: | 1.15.1 |
Release: | 55.0.7.el7_9 |
Architecture: | x86_64 |
Group: | System Environment/Base |
Size: | 2651471 |
License: | MIT |
RPM: | krb5-workstation-1.15.1-55.0.7.el7_9.x86_64.rpm |
Source RPM: | krb5-1.15.1-55.0.7.el7_9.src.rpm |
Build Date: | Thu Nov 28 2024 |
Build Host: | build-ol7-x86_64.oracle.com |
Vendor: | Oracle America |
URL: | http://web.mit.edu/kerberos/www/ |
Summary: | Kerberos 5 programs for use on workstations |
Description: | Kerberos is a network authentication system. The krb5-workstation package contains the basic Kerberos programs (kinit, klist, kdestroy, kpasswd). If your network uses Kerberos, this package should be installed on every workstation. |
- libkrad: implement support for Message-Authenticator (CVE-2024-3596) [Orabug: 37241077]
- Add CVE numbers to the changelog entry for version 1.15.1-55.0.3
- Length check when parsing GSS token encapsulation [Orabug: 36927256] - Add a simple DER support header [Orabug: 36927256] - Fix vulnerabilities in GSS message token handling [Orabug: 36927256] (CVE-2024-37370 CVE-2024-37371)
- Add recursion limit for ASN.1 indefinite lengths [Orabug: 32582360]
- Fix integer overflows in PAC parsing (CVE-2022-42898) - Resolves: rhbz#2140961
- Try harder to avoid password change replay errors - Resolves: #2063163
- Backport usage of SHA-256 instead of SHA-1 for PKINIT CMS digest - Resolves: #2066319
- Fix KDC null deref on TGS inner body null server (CVE-2021-37750) - Resolves: #1997599
- Disable smoke tests on s390x and remove sleep - Resolves: #1782492
- Fix LDAP policy enforcement of pw_expiration - Resolves: #1782492