system environment/daemons

krb5-server - The KDC and related programs for Kerberos 5.

Website: http://web.mit.edu/kerberos/www/
License: MIT, freely distributable.
Vendor: Scientific Linux
Description:
Kerberos is a network authentication system. The krb5-server package
contains the programs that must be installed on a Kerberos 5 key
distribution center (KDC).  If you are installing a Kerberos 5 KDC,
you need to install this package (in other words, most people should
NOT install this package).

Packages

krb5-server-1.6.1-80.el5_11.i386 [913 KiB] Changelog by Nalin Dahyabhai (2014-08-28):
- rebuild
krb5-server-1.6.1-78.el5.i386 [913 KiB] Changelog by Nalin Dahyabhai (2014-07-28):
- gssapi: pull in upstream fix for a possible NULL dereference in spnego
  (CVE-2014-4344, #1121509)
krb5-server-1.6.1-70.el5_9.2.i386 [912 KiB] Changelog by Nalin Dahyabhai (2013-06-05):
- rebuild, correcting changelog version/release identifiers
krb5-server-1.6.1-70.el5.i386 [912 KiB] Changelog by Nalin Dahyabhai (2011-12-27):
- add upstream patch for telnetd buffer overflow (CVE-2011-4862, #770351)
krb5-server-1.6.1-63.el5_7.i386 [911 KiB] Changelog by Huzaifa Sidhpurwala (2011-12-27):
- Fix for CVE-2011-4862
krb5-server-1.6.1-55.el5_6.1.i386 [909 KiB] Changelog by Nalin Dahyabhai (2011-01-20):
- add upstream patch to fix hang or crash in the KDC when using the LDAP kdb
  backend (CVE-2011-0281, CVE-2011-0282, #671096)
krb5-server-1.6.1-36.el5_5.6.i386 [906 KiB] Changelog by Nalin Dahyabhai (2010-11-12):
- incorporate candidate patch for checksum acceptance issues from
  MITKRB5-SA-2010-007 (CVE-2010-1323, #652307)
krb5-server-1.6.1-36.el5_5.4.i386 [905 KiB] Changelog by Nalin Dahyabhai (2010-05-04):
- add candidate patch to correct KDC null pointer dereference which
  could be triggered by malformed client requests (CVE-2010-1321, #583703)
krb5-server-1.6.1-36.el5_5.2.i386 [905 KiB] Changelog by Nalin Dahyabhai (2010-03-30):
- add upstream patch to fix a few use-after-free bugs, including one in
  kadmind (CVE-2010-0629, #578185)
krb5-server-1.6.1-36.el5_4.1.i386 [905 KiB] Changelog by Nalin Dahyabhai (2009-12-10):
- add candidate patch to correct KDC integer overflows which could be
  triggered by malformed RC4 and AES ciphertexts (CVE-2009-4212, #546347)
krb5-server-1.6.1-31.el5_3.3.i386 [904 KiB] Changelog by Nalin Dahyabhai (2009-04-03):
- update to revised patch for CVE-2009-0844/CVE-2009-0845
krb5-server-1.6.1-25.el5_2.1.i386 [903 KiB] Changelog by Nalin Dahyabhai (2008-09-11):
- backport fix from 1.6.3 to abort a sequential scan of a keytab if the
  handle to the keytab has become invalidated during the scan (via Vince
  Worthington, #461908)
krb5-server-1.6.1-17.el5_1.1.i386 [900 KiB] Changelog by Nalin Dahyabhai (2008-03-07):
- add preliminary patch to fix use of uninitialized pointer / double-free in
  KDC (CVE-2008-0062,CVE-2008-0063) (#432620, #432621)
- add backported patch to fix use-after-free in libgssapi_krb5 (CVE-2007-5901)
  (#415321)
- add backported patch to fix double-free in libgssapi_krb5 (CVE-2007-5971)
  (#415351)
- add preliminary patch to fix incorrect handling of high-numbered descriptors
  in the RPC library (CVE-2008-0947) (#433596)

Listing created by Repoview-0.6.6-1.el6