Jump to letter: [
3ABCDEFGHIJKLMNOPQRSTUVWXYZ
]
krb5 - The Kerberos network authentication system
- Description:
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of sending passwords over the network in unencrypted form.
Packages
| krb5-1.10.3-10.el6_4.3.src
[11.5 MiB] |
Changelog
by Nalin Dahyabhai (2013-05-31):
- pull up fix for UDP ping-pong flaw in kpasswd service (CVE-2002-2443,
|
| krb5-1.10.3-10.el6_4.2.src
[11.5 MiB] |
Changelog
by Nalin Dahyabhai (2013-04-09):
- incorporate upstream patch to fix a NULL pointer dereference while processing
certain TGS requests (CVE-2013-1416, #950342)
|
| krb5-1.10.3-10.el6_4.1.src
[11.5 MiB] |
Changelog
by Nalin Dahyabhai (2013-03-05):
- incorporate upstream patch to fix a NULL pointer dereference when the client
supplies an otherwise-normal-looking PKINIT request (CVE-2013-1415, #917909)
- add patch to avoid dereferencing a NULL pointer in the KDC when handling a
draft9 PKINIT request (#917909, CVE-2012-1016)
|
| krb5-1.10.3-10.el6.src
[11.5 MiB] |
Changelog
by Nalin Dahyabhai (2012-12-18):
- make -server conflict with older versions of SELinux policy that didn't
allow us to use eventfds, which libverto's backend may depend on in order
to properly shut down a multi-worker KDC (#871524)
|
| krb5-1.9-22.el6_2.1.src
[12.2 MiB] |
Changelog
by Nalin Dahyabhai (2011-11-17):
- add candidate patch to fix a NULL pointer dereference while processing TGS
requests (MITKRB5-SA-2011-007, #754046)
|
| krb5-1.9-22.el6.src
[12.2 MiB] |
Changelog
by Nalin Dahyabhai (2011-10-18):
- handle a harder-to-trigger assertion failure that starts cropping up when we
exit the transmit loop on time (#746341)
- apply upstream patch to fix a null pointer derference with the LDAP kdb
backend (CVE-2011-1527), an assertion failure with multiple kdb backends
(CVE-2011-1528), and a null pointer dereference with multiple kdb backends
(CVE-2011-1529) (MITKRB5-SA-2011-006, #740085)
|