[ol7_latest_archive] krb5-devel-1.13.2-12.el7_2.x86_64

Name:	krb5-devel
Version:	1.13.2
Release:	12.el7_2
Architecture:	x86_64
Group:	Development/Libraries
Size:	1677250
License:	MIT
RPM:	krb5-devel-1.13.2-12.el7_2.x86_64.rpm
Source RPM:	krb5-1.13.2-12.el7_2.src.rpm
Build Date:	Thu Mar 31 2016
Build Host:	x86-ol7-builder-02.us.oracle.com
Vendor:	Oracle America
URL:	http://web.mit.edu/kerberos/www/
Summary:	Development files needed to compile Kerberos 5 programs
Description:	Kerberos is a network authentication system. The krb5-devel package contains the header files and libraries needed for compiling Kerberos 5 programs. If you want to develop Kerberos-aware programs, you need to install this package.

Changelog (Show File list) (Show related packages)

Fri Feb 12 2016 Robbie Harwood <rharwood@redhat.com> - 1.13.2-12

- Fix CVE-2015-8631, CVE-2015-8630, and CVE-2015-8629
- Remove obsolete trigger to enable building of package
- Resolves: #1306969

Fri Sep 04 2015 Robbie Harwood <rharwood@redhat.com> 1.13.2-9

- Add patch and test case for "KDC does not return proper
  client principal for client referrals"
- Resolves: #1259846

Mon Aug 31 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-9

- Ammend patch for RedHat bug #1252454 ('testsuite complains
  "Lifetime has increased by 32436 sec while 0 sec passed!",
  while rhel5-libkrb5 passes') to handle the newly introduced
  valgrind hits.

Wed Aug 19 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-8

- Add a patch to fix RH Bug #1250154 ("[s390x, ppc64, ppc64le]:
  kadmind does not accept ACL if kadm5.acl does not end with EOL")
  The code "accidently" works on x86/AMD64 because declaring a
  variable |char| results in an |unsigned char| by default while
  most other platforms (e.g. { s390x, ppc64, ppc64le, ...})
  default to |signed char| (still have to use lint(1) to clean
  up 38 more instances of this kind of bug).

Wed Aug 19 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-7

- Obsolete multilib versions of server packages to fix RH
  bug #1251913 ("krb5 should obsolete the multilib versions
  of krb5-server and krb5-server-ldap").
  The following packages are declared obsolete:
  - krb5-server-1.11.3-49.el7.i686
  - krb5-server-1.11.3-49.el7.ppc
  - krb5-server-1.11.3-49.el7.s390
  - krb5-server-ldap-1.11.3-49.el7.i686
  - krb5-server-ldap-1.11.3-49.el7.ppc
  - krb5-server-ldap-1.11.3-49.el7.s390

Wed Aug 19 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-6

- Add a patch to fix RedHat bug #1252454 ('testsuite complains
  "Lifetime has increased by 32436 sec while 0 sec passed!",
  while rhel5-libkrb5 passes') so that krb5 resolves GSS creds
  if |time_rec| is requested.

Fri Aug 07 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-5

- Add a patch to fix RedHat bug #1251586 ("KDC sends multiple
  requests to ipa-otpd for the same authentication") which causes
  the KDC to send multiple retries to ipa-otpd for TCP transports
  while it should only be done for UDP.

Tue Jul 28 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-4

- the rebase to krb5 1.13.2 in vers 1.13.2-0 also fixed:
  - Redhat Bug #1247761 ("RFE: Minor krb5 spec file cleanup and sync
    with recent Fedora 22/23 changes")
  - Redhat Bug #1247751 ("krb5-config returns wrong -specs path")
  - Redhat Bug #1247608 ('Add support for multi-hop preauth mechs
    via |KDC_ERR_MORE_PREAUTH_DATA_REQUIRED| for RFC 6113 ("A
    Generalized Framework for Kerberos Pre-Authentication")')
- Removed "krb5-1.10-kprop-mktemp.patch" and
  "krb5-1.3.4-send-pr-tempfile.patch", both are no longer used since
  the rebase to krb5 1.13.1

Fri May 29 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-3

- Add patch to fix Redhat Bug #1222903 ("[SELinux] AVC denials may appear
  when kadmind starts"). The issue was caused by an unneeded |htons()|
  which triggered SELinux AVC denials due to the "random" port usage.

Thu May 21 2015 Roland Mainz <rmainz@redhat.com> - 1.13.2-2

- Add fix for RedHat Bug #1164304 ("Upstream unit tests loads
  the installed shared libraries instead the ones from the build")