System Environment/Daemons

krb5-server: The KDC and related programs for Kerberos 5.

Name:krb5-server Vendor:Scientific Linux
Version:1.6.1 License:MIT, freely distributable.
Release:25.el5_2.2 URL:http://web.mit.edu/kerberos/www/
Summary
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, you need to install this package (in other words, most people should NOT install this package).

Arch: i386

Download:krb5-server-1.6.1-25.el5_2.2.i386.rpm
Build Date:Mon Jan 12 05:47:02 2009
Packager:
Size:1.08 MiB

Changelog

* Wed Dec 3 16:00:00 2008 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.6.1-25.el5_2.2
- add a backported patch which adds a check on credentials obtained from
  the KDC to make sure that they're of an acceptable type, and if not, retry to
  the request to get one of the right type (Sadique Puthen, #473104)
* Thu Sep 11 17:00:00 2008 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.6.1-25.el5_2.1
- backport fix from 1.6.3 to abort a sequential scan of a keytab if the
  handle to the keytab has become invalidated during the scan (via Vince
  Worthington, #461908)
* Wed Mar 5 16:00:00 2008 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.6.1-25.el5_2
- add preliminary patch to fix use of uninitialized pointer / double-free in
  KDC (CVE-2008-0062,CVE-2008-0063) (#432620, #432621)
- add backported patch to fix use-after-free in libgssapi_krb5 (CVE-2007-5901)
  (#415321)
- add backported patch to fix double-free in libgssapi_krb5 (CVE-2007-5971)
  (#415351)
- add preliminary patch to fix incorrect handling of high-numbered descriptors
  in the RPC library (CVE-2008-0947) (#433596)

Listing created by RepoView-0.5.2