| Name: | krb5-server |
|---|---|
| Version: | 1.18.2 |
| Release: | 30.0.1.el8_10 |
| Architecture: | x86_64 |
| Group: | System Environment/Daemons |
| Size: | 1481865 |
| License: | MIT |
| RPM: | krb5-server-1.18.2-30.0.1.el8_10.x86_64.rpm |
| Source RPM: | krb5-1.18.2-30.0.1.el8_10.src.rpm |
| Build Date: | Tue Nov 05 2024 |
| Build Host: | build-ol8-x86_64.oracle.com |
| Vendor: | Oracle America |
| URL: | http://web.mit.edu/kerberos/www/ |
| Summary: | The KDC and related programs for Kerberos 5 |
| Description: | Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, you need to install this package (in other words, most people should NOT install this package). |
- Fixed race condition in krb5_set_password() [Orabug: 33609767]
- libkrad: implement support for Message-Authenticator (CVE-2024-3596) Resolves: RHEL-50253 - Remove RSA protocol for PKINIT Resolves: RHEL-17616
- CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45398 RHEL-45386
- Fix leak of default credentials in gss_inquire_cred() Resolves: RHEL-32258
- Fix memory leak in GSSAPI interface Resolves: RHEL-27250 - Fix memory leak in PMAP RPC interface Resolves: RHEL-27244 - Make TCP waiting time configurable Resolves: RHEL-17131
- Allow to make AD-SIGNEDPATH optional Resolves: RHEL-10514
- Bump release number
- Remove downloadable source signature file - Resolves: rhbz#2219654
- Support PAC with KDC extended signature and without ticket signature - Resolves: rhbz#2169477
- Fix integer overflows in PAC parsing (CVE-2022-42898) - Resolves: rhbz#2140968