Name: krb5-libs	Distribution: AlmaLinux
Version: 1.21.1	Vendor: AlmaLinux
Release: 8.el9_6	Build date: Tue Jun 24 14:42:57 2025
Group: Unspecified	Build host: x64-builder02.almalinux.org
Size: 2518247	Source RPM: krb5-1.21.1-8.el9_6.src.rpm
Packager: AlmaLinux Packaging Team <packager@almalinux.org>
Url: https://web.mit.edu/kerberos/www/
Summary: The non-admin shared libraries used by Kerberos 5

Kerberos is a network authentication system. The krb5-libs package
contains the shared libraries needed by Kerberos 5. If you are using
Kerberos, you need to install this package.

Provides

Requires

License

MIT

Changelog

* Fri Apr 18 2025 Julien Rische <jrische@redhat.com> - 1.21.1-9
  - Do not block HMAC-MD4/5 in FIPS mode
    Resolves: RHEL-88704
  - Don't issue RC4 session keys by default (CVE-2025-3576)
    Resolves: RHEL-88048
  - Add PKINIT paChecksum2 from MS-PKCA v20230920
    Resolves: RHEL-82647
* Tue Mar 25 2025 Julien Rische <jrische@redhat.com> - 1.21.1-7
  - Add dedicated tests sub-package
* Wed Jan 29 2025 Julien Rische <jrische@redhat.com> - 1.21.1-6
  - Prevent overflow when calculating ulog block size (CVE-2025-24528)
    Resolves: RHEL-76759
* Fri Jan 17 2025 Julien Rische <jrische@redhat.com> - 1.21.1-5
  - Support PKCS11 EC client certs in PKINIT
    Resolves: RHEL-74374
  - kdb5_util: fix DB entry flags on modification
    Resolves: RHEL-56059
  - Add ECDH support for PKINIT (RFC5349)
    Resolves: RHEL-4902
* Thu Oct 17 2024 Julien Rische <jrische@redhat.com> - 1.21.1-4
  - libkrad: implement support for Message-Authenticator (CVE-2024-3596)
    Resolves: RHEL-55423
  - Fix various issues detected by static analysis
    Resolves: RHEL-58216
  - Remove RSA protocol for PKINIT
    Resolves: RHEL-15323
* Fri Jul 05 2024 Julien Rische <jrische@redhat.com> - 1.21.1-3
  - CVE-2024-37370 CVE-2024-37371
    Fix vulnerabilities in GSS message token handling
    Resolves: RHEL-45402 RHEL-45392
* Wed Mar 20 2024 Julien Rische <jrische@redhat.com> - 1.21.1-2
  - Fix memory leak in GSSAPI interface
    Resolves: RHEL-27251
  - Fix memory leak in PMAP RPC interface
    Resolves: RHEL-27245
  - Fix memory leak in failing UTF-8 to UTF-16 re-encoding for PAC
    Resolves: RHEL-27253
  - Make TCP waiting time configurable
    Resolves: RHEL-17132
* Tue Aug 08 2023 Julien Rische <jrische@redhat.com> - 1.21.1-1
  - New upstream version (1.21.1)
  - Fix double-free in KDC TGS processing (CVE-2023-39975)
  - Add support for "pac_privsvr_enctype" KDB string attribute
    Resolves: rhbz#2060421
* Thu Jun 08 2023 Julien Rische <jrische@redhat.com> - 1.20.1-9
  - Do not disable PKINIT if some of the well-known DH groups are unavailable
    Resolves: rhbz#2187722
  - Make PKINIT CMS SHA-1 signature verification available in FIPS mode
    Resolves: rhbz#2155607
  - Allow to set PAC ticket signature as optional
    Resolves: rhbz#2178298

Files

/etc/gss
/etc/gss/mech.d
/etc/krb5.conf
/etc/krb5.conf.d
/etc/krb5.conf.d/crypto-policies
/usr/lib/.build-id
/usr/lib/.build-id/08
/usr/lib/.build-id/08/bd86cf34935431c4a03eaabcb644b2cf91671b
/usr/lib/.build-id/0e
/usr/lib/.build-id/0e/b94f8aadef8f8e1b05a12051a7531be776e7a7
/usr/lib/.build-id/20
/usr/lib/.build-id/20/73ed61875e8adf7a7ff59d0927da8fe84e7807
/usr/lib/.build-id/2c
/usr/lib/.build-id/2c/6c11369cf616f6a4c99592fd8d3d7e27ea2516
/usr/lib/.build-id/62
/usr/lib/.build-id/62/d35de1300f06e24939aed05d8e74fba11426a0
/usr/lib/.build-id/6e
/usr/lib/.build-id/6e/409bf50b66ac12e45602340875d79fd1b520f3
/usr/lib/.build-id/9c
/usr/lib/.build-id/9c/9a800cc9ddce9b956864b099297559c959544a
/usr/lib/.build-id/c5
/usr/lib/.build-id/c5/78872b0bfc9899d3e17730939e6e821ef93537
/usr/lib/.build-id/f3
/usr/lib/.build-id/f3/750f9b0822582001f65f1b227a54f9013f166a
/usr/lib/krb5
/usr/lib/krb5/plugins
/usr/lib/krb5/plugins/authdata
/usr/lib/krb5/plugins/kdb
/usr/lib/krb5/plugins/libkrb5
/usr/lib/krb5/plugins/preauth
/usr/lib/krb5/plugins/preauth/spake.so
/usr/lib/krb5/plugins/tls
/usr/lib/krb5/plugins/tls/k5tls.so
/usr/lib/libgssapi_krb5.so.2
/usr/lib/libgssapi_krb5.so.2.2
/usr/lib/libgssrpc.so.4
/usr/lib/libgssrpc.so.4.2
/usr/lib/libk5crypto.so.3
/usr/lib/libk5crypto.so.3.1
/usr/lib/libkdb5.so.10
/usr/lib/libkdb5.so.10.0
/usr/lib/libkrad.so.0
/usr/lib/libkrad.so.0.0
/usr/lib/libkrb5.so.3
/usr/lib/libkrb5.so.3.3
/usr/lib/libkrb5support.so.0
/usr/lib/libkrb5support.so.0.1
/usr/share/doc/krb5-libs
/usr/share/doc/krb5-libs/NOTICE
/usr/share/doc/krb5-libs/README
/usr/share/licenses/krb5-libs
/usr/share/licenses/krb5-libs/LICENSE
/usr/share/locale/de/LC_MESSAGES/mit-krb5.mo
/usr/share/locale/en_US/LC_MESSAGES/mit-krb5.mo
/usr/share/locale/ka/LC_MESSAGES/mit-krb5.mo
/usr/share/man/man5/.k5identity.5.gz
/usr/share/man/man5/.k5login.5.gz
/usr/share/man/man5/k5identity.5.gz
/usr/share/man/man5/k5login.5.gz
/usr/share/man/man5/krb5.conf.5.gz
/usr/share/man/man7/kerberos.7.gz
/var/kerberos
/var/kerberos/krb5
/var/kerberos/krb5/user

Generated by rpm2html 1.8.1

Fabrice Bellet, Thu Jun 26 06:07:29 2025

krb5-libs-1.21.1-8.el9_6 RPM for i686

From AlmaLinux 9.6 BaseOS for x86_64

Provides

Requires

License

Changelog

Files