| Name: | krb5-server-ldap |
|---|---|
| Version: | 1.21.1 |
| Release: | 9.0.1.el9_7 |
| Architecture: | x86_64 |
| Group: | Unspecified |
| Size: | 278689 |
| License: | MIT |
| RPM: | krb5-server-ldap-1.21.1-9.0.1.el9_7.x86_64.rpm |
| Source RPM: | krb5-1.21.1-9.0.1.el9_7.src.rpm |
| Build Date: | Wed Apr 22 2026 |
| Build Host: | build-ol9-x86_64.oracle.com |
| Vendor: | Oracle America |
| URL: | https://web.mit.edu/kerberos/www/ |
| Summary: | The LDAP storage plugin for the Kerberos 5 KDC |
| Description: | Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 key distribution center (KDC). If you are installing a Kerberos 5 KDC, and you wish to use a directory server to store the data for your realm, you need to install this package. |
- Fixed race condition in krb5_set_password() [Orabug: 33609767]
- krad: packet ID fetched from uninitialized variable Resolves: RHEL-150953
- Do not block HMAC-MD4/5 in FIPS mode Resolves: RHEL-88704 - Don't issue RC4 session keys by default (CVE-2025-3576) Resolves: RHEL-88048 - Add PKINIT paChecksum2 from MS-PKCA v20230920 Resolves: RHEL-82647
- Add dedicated tests sub-package
- Prevent overflow when calculating ulog block size (CVE-2025-24528) Resolves: RHEL-76759
- Support PKCS11 EC client certs in PKINIT Resolves: RHEL-74374 - kdb5_util: fix DB entry flags on modification Resolves: RHEL-56059 - Add ECDH support for PKINIT (RFC5349) Resolves: RHEL-4902
- libkrad: implement support for Message-Authenticator (CVE-2024-3596) Resolves: RHEL-55423 - Fix various issues detected by static analysis Resolves: RHEL-58216 - Remove RSA protocol for PKINIT Resolves: RHEL-15323
- CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45402 RHEL-45392