krb5-1.15.2-lp150.5.6.1.x86_64.rpm


Advertisement

Description

krb5 - MIT Kerberos5 implementation

Property Value
Distribution openSUSE Leap 15.0
Repository openSUSE Update Oss all
Package filename krb5-1.15.2-lp150.5.6.1.x86_64.rpm
Package name krb5
Package version 1.15.2
Package release lp150.5.6.1
Package architecture x86_64
Package type rpm
Category Productivity/Networking/Security
Homepage https://web.mit.edu/kerberos/www/
License MIT
Maintainer -
Download size 619.50 KB
Installed size 1.82 MB
Kerberos V5 is a trusted-third-party network authentication system,
which can improve network security by eliminating the insecure
practice of clear text passwords.

Alternatives

Package Version Architecture Repository
krb5-1.15.2-lp150.5.3.1.x86_64.rpm 1.15.2 x86_64 openSUSE Update Oss
krb5-1.15.2-lp150.4.4.x86_64.rpm 1.15.2 x86_64 openSUSE Oss
krb5 - - -

Requires

Name Value
/sbin/ldconfig -
libc.so.6(GLIBC_2.16)(64bit) -
libcom_err.so.2()(64bit) -
libdl.so.2()(64bit) -
libdl.so.2(GLIBC_2.2.5)(64bit) -
libkeyutils.so.1()(64bit) -
libkeyutils.so.1(KEYUTILS_0.3)(64bit) -
libkeyutils.so.1(KEYUTILS_1.0)(64bit) -
libkeyutils.so.1(KEYUTILS_1.5)(64bit) -
libresolv.so.2()(64bit) -
libresolv.so.2(GLIBC_2.2.5)(64bit) -
libresolv.so.2(GLIBC_2.9)(64bit) -
libselinux.so.1()(64bit) -
libverto.so.1()(64bit) -

Provides

Name Value
config(krb5) = 1.15.2-lp150.5.6.1
krb5 = 1.15.2-lp150.5.6.1
krb5(x86-64) = 1.15.2-lp150.5.6.1
libgssapi_krb5.so.2()(64bit) -
libgssapi_krb5.so.2(HIDDEN)(64bit) -
libgssapi_krb5.so.2(gssapi_krb5_2_MIT)(64bit) -
libgssrpc.so.4()(64bit) -
libgssrpc.so.4(HIDDEN)(64bit) -
libgssrpc.so.4(gssrpc_4_MIT)(64bit) -
libk5crypto.so.3()(64bit) -
libk5crypto.so.3(HIDDEN)(64bit) -
libk5crypto.so.3(k5crypto_3_MIT)(64bit) -
libkadm5clnt_mit.so.11()(64bit) -
libkadm5clnt_mit.so.11(HIDDEN)(64bit) -
libkadm5clnt_mit.so.11(kadm5clnt_mit_11_MIT)(64bit) -
libkadm5srv_mit.so.11()(64bit) -
libkadm5srv_mit.so.11(HIDDEN)(64bit) -
libkadm5srv_mit.so.11(kadm5srv_mit_11_MIT)(64bit) -
libkdb5.so.8()(64bit) -
libkdb5.so.8(HIDDEN)(64bit) -
libkdb5.so.8(kdb5_8_MIT)(64bit) -
libkrad.so.0()(64bit) -
libkrad.so.0(HIDDEN)(64bit) -
libkrad.so.0(krad_0_MIT)(64bit) -
libkrb5.so.3()(64bit) -
libkrb5.so.3(HIDDEN)(64bit) -
libkrb5.so.3(krb5_3_MIT)(64bit) -
libkrb5support.so.0()(64bit) -
libkrb5support.so.0(HIDDEN)(64bit) -
libkrb5support.so.0(krb5support_0_MIT)(64bit) -

Conflicts

Name Value
krb5-mini -

Obsoletes

Name Value
krb5-plugin-preauth-pkinit-nss -

Download

Type URL
Mirror widehat.opensuse.org
Binary Package krb5-1.15.2-lp150.5.6.1.x86_64.rpm
Source Package krb5-1.15.2-lp150.5.6.1.src.rpm

Install Howto

Install krb5 rpm package:

# zypper install krb5

Files

Path
/etc/krb5.conf
/etc/profile.d/krb5.csh
/etc/profile.d/krb5.sh
/usr/lib64/libgssapi_krb5.so
/usr/lib64/libgssapi_krb5.so.2
/usr/lib64/libgssapi_krb5.so.2.2
/usr/lib64/libgssrpc.so.4
/usr/lib64/libgssrpc.so.4.2
/usr/lib64/libk5crypto.so.3
/usr/lib64/libk5crypto.so.3.1
/usr/lib64/libkadm5clnt_mit.so.11
/usr/lib64/libkadm5clnt_mit.so.11.0
/usr/lib64/libkadm5srv_mit.so.11
/usr/lib64/libkadm5srv_mit.so.11.0
/usr/lib64/libkdb5.so.8
/usr/lib64/libkdb5.so.8.0
/usr/lib64/libkrad.so.0
/usr/lib64/libkrad.so.0.0
/usr/lib64/libkrb5.so.3
/usr/lib64/libkrb5.so.3.3
/usr/lib64/libkrb5support.so.0
/usr/lib64/libkrb5support.so.0.1
/usr/lib64/krb5/
/usr/lib64/krb5/plugins/
/usr/lib64/krb5/plugins/kdb/
/usr/lib64/krb5/plugins/libkrb5/
/usr/lib64/krb5/plugins/preauth/
/usr/lib64/krb5/plugins/tls/
/usr/share/doc/packages/krb5/README
/usr/share/locale/en_US/LC_MESSAGES/mit-krb5.mo
/var/log/krb5/

Changelog

2019-01-18 - Samuel Cabrero <scabrero@suse.de>
- Fix flaws in LDAP DN checking; (CVE-2018-5729); (CVE-2018-5730);
(bsc#1083926); (bsc#1083927)
- Added patches:
* 0011-Fix-flaws-in-LDAP-DN-checking.patch
2019-01-08 - Samuel Cabrero <scabrero@suse.de>
- Remove incorrect KDC assertion; (CVE-2018-20217); (bsc#1120489);
- Added patches:
* 0010-Remove-incorrect-KDC-assertion.patch
2017-11-23 - rbrown@suse.com
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
2017-11-06 - hguo@suse.com
- Remove build dependency doxygen, python-Cheetah, python-Sphinx,
python-libxml2, python-lxml, most of which are python 2 programs.
Consequently remove -doc subpackage. Users are encouraged to use
online documentation. (bsc#1066461)
2017-10-02 - jengelh@inai.de
- Update package descriptions.
2017-09-25 - michael@stroeder.com
- Upgrade to 1.15.2
* Fix a KDC denial of service vulnerability caused by unset status
strings [CVE-2017-11368]
* Preserve GSS contexts on init/accept failure [CVE-2017-11462]
* Fix kadm5 setkey operation with LDAP KDB module
* Use a ten-second timeout after successful connection for HTTPS KDC
requests, as we do for TCP requests
* Fix client null dereference when KDC offers encrypted challenge
without FAST
* Ignore dotfiles when processing profile includedir directive
* Improve documentation
2017-08-18 - hguo@suse.com
- Set "rdns" and "dns_canonicalize_hostname" to false in krb5.conf
in order to improve client security in handling service principle
names. (bsc#1054028)
2017-08-11 - hguo@suse.com
- Prevent kadmind.service startup failure caused by absence of
LDAP service. (bsc#903543)
2017-06-06 - hguo@suse.com
- There is no change made about the package itself, this is only
copying over some changelog texts from SLE package:
- bug#918595 owned by varkoly@suse.com: VUL-0: CVE-2014-5355
krb5: denial of service in krb5_read_message
- bug#912002 owned by varkoly@suse.com: VUL-0
CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423:
krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token
- bug#910458 owned by varkoly@suse.com: VUL-1
CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries
- bug#928978 owned by varkoly@suse.com: VUL-0
CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading
to requires_preauth bypass
- bug#910457 owned by varkoly@suse.com: VUL-1
CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy
name as a password policy name
- bug#991088 owned by hguo@suse.com: VUL-1
CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted
- bug#992853 owned by hguo@suse.com: krb5: bogus prerequires
- [fate#320326](https://fate.suse.com/320326)
- bug#982313 owned by pgajdos@suse.com: Doxygen unable to resolve reference
from \cite
2017-04-06 - kukuk@suse.de
- Remove wrong PreRequires from krb5

See Also

Package Description
krb5-32bit-1.15.2-lp150.5.3.1.x86_64.rpm MIT Kerberos5 implementation
krb5-32bit-1.15.2-lp150.5.6.1.x86_64.rpm MIT Kerberos5 implementation
krb5-client-1.15.2-lp150.5.3.1.x86_64.rpm Client programs of the MIT Kerberos5 implementation
krb5-client-1.15.2-lp150.5.6.1.x86_64.rpm Client programs of the MIT Kerberos5 implementation
krb5-devel-1.15.2-lp150.5.3.1.x86_64.rpm Development files for MIT Kerberos5
krb5-devel-1.15.2-lp150.5.6.1.x86_64.rpm Development files for MIT Kerberos5
krb5-devel-32bit-1.15.2-lp150.5.3.1.x86_64.rpm Development files for MIT Kerberos5
krb5-devel-32bit-1.15.2-lp150.5.6.1.x86_64.rpm Development files for MIT Kerberos5
krb5-mini-1.15.2-lp150.5.3.1.x86_64.rpm MIT Kerberos5 implementation and libraries with minimal dependencies
krb5-mini-1.15.2-lp150.5.6.1.x86_64.rpm MIT Kerberos5 implementation and libraries with minimal dependencies
krb5-mini-devel-1.15.2-lp150.5.3.1.x86_64.rpm Development files for MIT Kerberos5 (openSUSE mini variant)
krb5-mini-devel-1.15.2-lp150.5.6.1.x86_64.rpm Development files for MIT Kerberos5 (openSUSE mini variant)
krb5-plugin-kdb-ldap-1.15.2-lp150.5.3.1.x86_64.rpm LDAP database plugin for MIT Kerberos5
krb5-plugin-kdb-ldap-1.15.2-lp150.5.6.1.x86_64.rpm LDAP database plugin for MIT Kerberos5
krb5-plugin-preauth-otp-1.15.2-lp150.5.3.1.x86_64.rpm OTP preauthentication plugin for MIT Kerberos5
Advertisement
Advertisement