krb5-mini - MIT Kerberos5 implementation and libraries with minimal dependencies

Property Value
Distribution openSUSE Leap 15.0
Repository openSUSE Update Oss all
Package filename krb5-mini-1.15.2-lp150.5.6.1.x86_64.rpm
Package name krb5-mini
Package version 1.15.2
Package release lp150.5.6.1
Package architecture x86_64
Package type rpm
Category Productivity/Networking/Security
License MIT
Maintainer -
Download size 1.05 MB
Installed size 3.32 MB
Kerberos V5 is a trusted-third-party network authentication system,
which can improve network security by eliminating the insecure
practice of clear text passwords.
The package delivers MIT Kerberos with reduced features and minimal


Package Version Architecture Repository
krb5-mini-1.15.2-lp150.5.3.1.x86_64.rpm 1.15.2 x86_64 openSUSE Update Oss
krb5-mini - - -


Name Value
coreutils -
diffutils -
fillup -
grep - - - - - - - - - - - - - - - - -


Name Value
config(krb5-mini) = 1.15.2-lp150.5.6.1
krb5-mini = 1.15.2-lp150.5.6.1
krb5-mini(x86-64) = 1.15.2-lp150.5.6.1 - - - - - - - - - - - - - - - - - - - - - - - - - - -


Name Value
krb5 -
krb5-client -
krb5-mini -
krb5-plugin-kdb-ldap -
krb5-plugin-preauth-otp -
krb5-plugin-preauth-pkinit -
krb5-server -


Name Value
krb5-plugin-preauth-pkinit-nss -


Type URL
Binary Package krb5-mini-1.15.2-lp150.5.6.1.x86_64.rpm
Source Package krb5-mini-1.15.2-lp150.5.6.1.src.rpm

Install Howto

Install krb5-mini rpm package:

# zypper install krb5-mini




2019-01-18 - Samuel Cabrero <>
- Fix flaws in LDAP DN checking; (CVE-2018-5729); (CVE-2018-5730);
(bsc#1083926); (bsc#1083927)
- Added patches:
* 0011-Fix-flaws-in-LDAP-DN-checking.patch
2019-01-08 - Samuel Cabrero <>
- Remove incorrect KDC assertion; (CVE-2018-20217); (bsc#1120489);
- Added patches:
* 0010-Remove-incorrect-KDC-assertion.patch
2017-11-23 -
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
2017-10-02 -
- Update package descriptions.
2017-09-25 -
- Upgrade to 1.15.2
* Fix a KDC denial of service vulnerability caused by unset status
strings [CVE-2017-11368]
* Preserve GSS contexts on init/accept failure [CVE-2017-11462]
* Fix kadm5 setkey operation with LDAP KDB module
* Use a ten-second timeout after successful connection for HTTPS KDC
requests, as we do for TCP requests
* Fix client null dereference when KDC offers encrypted challenge
without FAST
* Ignore dotfiles when processing profile includedir directive
* Improve documentation
2017-08-18 -
- Set "rdns" and "dns_canonicalize_hostname" to false in krb5.conf
in order to improve client security in handling service principle
names. (bsc#1054028)
2017-06-06 -
- There is no change made about the package itself, this is only
copying over some changelog texts from SLE package:
- bug#918595 owned by VUL-0: CVE-2014-5355
krb5: denial of service in krb5_read_message
- bug#912002 owned by VUL-0
CVE-2014-5352, CVE-2014-9421, CVE-2014-9422, CVE-2014-9423:
krb5: Vulnerabilities in kadmind, libgssrpc, gss_process_context_token
- bug#910458 owned by VUL-1
CVE-2014-5354: krb5: NULL pointer dereference when using keyless entries
- bug#928978 owned by VUL-0
CVE-2015-2694: krb5: issues in OTP and PKINIT kdcpreauth modules leading
to requires_preauth bypass
- bug#910457 owned by VUL-1
CVE-2014-5353: krb5: NULL pointer dereference when using a ticket policy
name as a password policy name
- bug#991088 owned by VUL-1
CVE-2016-3120: krb5: S4U2Self KDC crash when anon is restricted
- bug#992853 owned by krb5: bogus prerequires
- [fate#320326](
- bug#982313 owned by Doxygen unable to resolve reference
from \cite
2017-04-06 -
- Remove wrong PreRequires
2017-03-09 -
- use HTTPS project and source URLs
2017-03-09 -
- use source urls.
- krb5.keyring: Added Greg Hudson

See Also

Package Description
krb5-mini-devel-1.15.2-lp150.5.3.1.x86_64.rpm Development files for MIT Kerberos5 (openSUSE mini variant)
krb5-mini-devel-1.15.2-lp150.5.6.1.x86_64.rpm Development files for MIT Kerberos5 (openSUSE mini variant)
krb5-plugin-kdb-ldap-1.15.2-lp150.5.3.1.x86_64.rpm LDAP database plugin for MIT Kerberos5
krb5-plugin-kdb-ldap-1.15.2-lp150.5.6.1.x86_64.rpm LDAP database plugin for MIT Kerberos5
krb5-plugin-preauth-otp-1.15.2-lp150.5.3.1.x86_64.rpm OTP preauthentication plugin for MIT Kerberos5
krb5-plugin-preauth-otp-1.15.2-lp150.5.6.1.x86_64.rpm OTP preauthentication plugin for MIT Kerberos5
krb5-plugin-preauth-pkinit-1.15.2-lp150.5.3.1.x86_64.rpm PKINIT preauthentication plugin for MIT Kerberos5
krb5-plugin-preauth-pkinit-1.15.2-lp150.5.6.1.x86_64.rpm PKINIT preauthentication plugin for MIT Kerberos5
krb5-server-1.15.2-lp150.5.3.1.x86_64.rpm Server program of the MIT Kerberos5 implementation
krb5-server-1.15.2-lp150.5.6.1.x86_64.rpm Server program of the MIT Kerberos5 implementation
kscreen5-5.12.6-lp150.2.3.1.x86_64.rpm KDE's screen management software
kscreen5-lang-5.12.6-lp150.2.3.1.noarch.rpm Translations for package kscreen5
kscreenlocker-5.12.6-lp150.2.3.1.x86_64.rpm Library and components for secure lock screen architecture
kscreenlocker-devel-5.12.6-lp150.2.3.1.x86_64.rpm Library and components for secure lock screen architecture - development files
kscreenlocker-lang-5.12.6-lp150.2.3.1.noarch.rpm Translations for package kscreenlocker