[ol8_appstream] idm-pki-kra-10.15.1-1.0.1.module+el8.10.0+90362+5113f0b5.noarch

Name:	idm-pki-kra
Version:	10.15.1
Release:	1.0.1.module+el8.10.0+90362+5113f0b5
Architecture:	noarch
Module:	pki-core:10.6:8100020240709131919:a1a9ba2e
Group:	Unspecified
Size:	632147
License:	GPLv2 and LGPLv2
RPM:	idm-pki-kra-10.15.1-1.0.1.module+el8.10.0+90362+5113f0b5.noarch.rpm
Source RPM:	pki-core-10.15.1-1.0.1.module+el8.10.0+90362+5113f0b5.src.rpm
Build Date:	Tue Jul 09 2024
Build Host:	build-ol8-x86_64.oracle.com
Vendor:	Oracle America
URL:	https://www.dogtagpki.org
Summary:	IDM PKI KRA Package
Description:	IDM PKI Key Recovery Authority (KRA) is an optional subsystem that can act as a key archival facility. When configured in conjunction with the Certificate Authority (CA), the KRA stores private encryption keys as part of the certificate enrollment process. The key archival mechanism is triggered when a user enrolls in the PKI and creates the certificate request. Using the Certificate Request Message Format (CRMF) request format, a request is generated for the user's private encryption key. This key is then stored in the KRA which is configured to store keys in an encrypted format that can only be decrypted by several agents requesting the key at one time, providing for protection of the public encryption keys for the users in the PKI deployment. Note that the KRA archives encryption keys; it does NOT archive signing keys, since such archival would undermine non-repudiation properties of signing keys.

Changelog (Show File list) (Show related packages)

Mon Jul 08 2024 Alan Steinberg <alan.steinberg@oracle.com> - 10.15.1-1.0.1
```
- Remove upstream reference
```
Fri Jun 14 2024 Red Hat PKI Team <rhcs-maint@redhat.com> 10.15.1-1
```
- Rebase to PKI 10.15.1
- Fix CVE 2023-4727
```
Thu Feb 08 2024 Red Hat PKI Team <rhcs-maint@redhat.com> 10.15.0-1
```
- Rebase to PKI 10.15.0
```
Tue Jan 16 2024 Red Hat PKI Team <rhcs-maint@redhat.com> 10.15.0-0.1
```
- Rebase to PKI 10.15.0-alpha1
```
Mon Jan 15 2024 Red Hat PKI Team <rhcs-maint@redhat.com> 10.14.3-2
```
- Replace pki-servlet-engine with tomcat
```

Fri Feb 03 2023 Red Hat PKI Team <rhcs-maint@redhat.com> 10.14.3-1

- Rebase to PKI 10.14.3
- Bug 1959057 - An error has ocorred (IPA Error 4301:CertificateOperationError)
- Bug 2016164 - IdM Install fails on RHEL 8.5 Beta when DISA STIG is applied
- Bug 2022561 - ipa-healthcheck CADogtagCertsConfigCheck fail to process the scenario of renewed IPA CA certificates ( ipa get_cert_from_db() )

Tue Nov 29 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.14.2-1

- Rebase to PKI 10.14.2
- Bug 2149253 - Rebase to upstream version v2.14.2

Mon Jul 25 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-4

- Bug 2107334 - CVE-2022-2414 access to external entities when parsing XML can lead to XXE
- Rename packages to idm-pki

Wed Jun 01 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-3
```
- ExcludeArch i686 as md2man not available in RHEL 8.7
```

Thu Feb 03 2022 Red Hat PKI Team <rhcs-maint@redhat.com> 10.12.0-2

- Bug 2027470 - pki-healthcheck ClonesConnectivyAndDataCheck fails