[ol8_baseos_latest] krb5-pkinit-1.18.2-30.0.1.el8_10.i686

Kerberos is a network authentication system. The krb5-pkinit
package contains the PKINIT plugin, which allows clients
to obtain initial credentials from a KDC using a private key and a
certificate.

Changelog (Show File list) (Show related packages)

• Tue Nov 05 2024 EL Errata <el-errata_ww@oracle.com> - 1.18.2-30.0.1

  - Fixed race condition in krb5_set_password() [Orabug: 33609767]

• Thu Oct 17 2024 Julien Rische <jrische@redhat.com> - 1.18.2-30

  - libkrad: implement support for Message-Authenticator (CVE-2024-3596)
    Resolves: RHEL-50253
  - Remove RSA protocol for PKINIT
    Resolves: RHEL-17616

• Mon Jul 01 2024 Julien Rische <jrische@redhat.com> - 1.18.2-29

  - CVE-2024-37370 CVE-2024-37371
    Fix vulnerabilities in GSS message token handling
    Resolves: RHEL-45398 RHEL-45386

• Tue Apr 09 2024 Julien Rische <jrische@redhat.com> - 1.18.2-28

  - Fix leak of default credentials in gss_inquire_cred()
    Resolves: RHEL-32258

• Thu Mar 21 2024 Julien Rische <jrische@redhat.com> - 1.18.2-27

  - Fix memory leak in GSSAPI interface
    Resolves: RHEL-27250
  - Fix memory leak in PMAP RPC interface
    Resolves: RHEL-27244
  - Make TCP waiting time configurable
    Resolves: RHEL-17131

• Wed Sep 27 2023 Julien Rische <jrische@redhat.com> - 1.18.2-26

  - Allow to make AD-SIGNEDPATH optional
    Resolves: RHEL-10514

• Thu Jul 06 2023 Julien Rische <jrische@redhat.com> - 1.18.2-25

  - Bump release number

• Wed Jul 05 2023 Julien Rische <jrische@redhat.com> - 1.18.2-24

  - Remove downloadable source signature file
  - Resolves: rhbz#2219654

• Wed May 31 2023 Julien Rische <jrische@redhat.com> - 1.18.2-23

  - Support PAC with KDC extended signature and without ticket signature
  - Resolves: rhbz#2169477

• Tue Nov 08 2022 Julien Rische <jrische@redhat.com> - 1.18.2-22

  - Fix integer overflows in PAC parsing (CVE-2022-42898)
  - Resolves: rhbz#2140968