rpm/krb5 - krb5 - openSUSE Gitea

rpm/krb5

SHA256

Author	SHA256	Message	Date
Ismail Dönmez	e206af5319	Accepting request 357309 from home:guohouzuo:branches:network - Fix CVE-2015-8629: krb5: xdr_nullstring() doesn't check for terminating null character with patch 0104-Verify-decoded-kadmin-C-strings-CVE-2015-8629.patch (bsc#963968) - Fix CVE-2015-8631: krb5: Memory leak caused by supplying a null principal name in request with patch 0105-Fix-leaks-in-kadmin-server-stubs-CVE-2015-8631.patch (bsc#963975) - Fix CVE-2015-8630: krb5: krb5 doesn't check for null policy when KADM5_POLICY is set in the mask with patch 0106-Check-for-null-kadm5-policy-name-CVE-2015-8630.patch (bsc#963964) OBS-URL: https://build.opensuse.org/request/show/357309 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=158	2016-02-02 08:54:49 +00:00
Dominique Leuenberger	7d356ebc8e	Accepting request 353069 from network - Add two patches from Fedora, fixing two crashes: * krb5-fix_interposer.patch * krb5-mechglue_inqure_attrs.patch - Update to 1.14 - dropped krb5-kvno-230379.patch - added krbdev.mit.edu-8301.patch fixing wrong function call Major changes in 1.14 (2015-11-20) ================================== Administrator experience: * Add a new kdb5_util tabdump command to provide reporting-friendly tabular dump formats (tab-separated or CSV) for the KDC database. Unlike the normal dump format, each output table has a fixed number of fields. Some tables include human-readable forms of data that are opaque in ordinary dump files. This format is also suitable for importing into relational databases for complex queries. * Add support to kadmin and kadmin.local for specifying a single command line following any global options, where the command arguments are split by the shell--for example, "kadmin getprinc principalname". Commands issued this way do not prompt for confirmation or display warning messages, and exit with non-zero status if the operation fails. * Accept the same principal flag names in kadmin as we do for the default_principal_flags kdc.conf variable, and vice versa. Also accept flag specifiers in the form that kadmin prints, as well as hexadecimal numbers. * Remove the triple-DES and RC4 encryption types from the default value of supported_enctypes, which determines the default key and salt types for new password-derived keys. By default, keys will only created only for AES128 and AES256. This mitigates some types OBS-URL: https://build.opensuse.org/request/show/353069 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=114	2016-01-13 21:43:58 +00:00
Ismail Dönmez	b9ca4cd2ca	- Add two patches from Fedora, fixing two crashes: * krb5-fix_interposer.patch * krb5-mechglue_inqure_attrs.patch - Add two patches from Fedora, fixing two crashes: * krb5-fix_interposer.patch * krb5-mechglue_inqure_attrs.patch OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=156	2016-01-11 12:39:08 +00:00
Ismail Dönmez	89512499b6	- OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=155	2016-01-10 16:46:56 +00:00
Ismail Dönmez	e9af2abc6d	Accepting request 352796 from home:stroeder:branches:network update to 1.14, successfully tested on Tumbleweed x86_64 1. purely as client for MS AD and 2. as KDC with LDAP backend OBS-URL: https://build.opensuse.org/request/show/352796 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=154	2016-01-10 16:41:42 +00:00
Stephan Kulow	3a0928caa1	Accepting request 347776 from network 1 OBS-URL: https://build.opensuse.org/request/show/347776 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=113	2015-12-13 08:38:29 +00:00
Ismail Dönmez	ee705d6c1a	Accepting request 347770 from home:stroeder:branches:network update to 1.13.3 OBS-URL: https://build.opensuse.org/request/show/347770 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=152	2015-12-07 12:50:29 +00:00
Dominique Leuenberger	4fe99a992a	Accepting request 343500 from network 1 OBS-URL: https://build.opensuse.org/request/show/343500 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=112	2015-11-15 11:45:42 +00:00
Ismail Dönmez	ea14ad7c34	Accepting request 343479 from home:guohouzuo:branches:network - Apply patch 0103-Fix-IAKERB-context-export-import-CVE-2015-2698.patch to fix a memory corruption regression introduced by resolution of CVE-2015-2698. bsc#954204 OBS-URL: https://build.opensuse.org/request/show/343479 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=150	2015-11-10 16:57:00 +00:00
Dominique Leuenberger	b2c8d28e09	Accepting request 341554 from network 1 OBS-URL: https://build.opensuse.org/request/show/341554 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=111	2015-11-04 14:30:36 +00:00
Ismail Dönmez	aa93054403	Accepting request 341521 from home:guohouzuo:branches:network One bug fix in manual page + 3 CVE fixes. OBS-URL: https://build.opensuse.org/request/show/341521 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=148	2015-10-29 18:14:03 +00:00
Dominique Leuenberger	8d7dddb7df	Accepting request 309600 from network 1 OBS-URL: https://build.opensuse.org/request/show/309600 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=110	2015-06-03 06:22:12 +00:00
Ismail Dönmez	172a23219f	Accepting request 309550 from home:guohouzuo:freeipa Let server depend on libev (module of libverto). This was the embedded implementation before the separation of libverto from krb. OBS-URL: https://build.opensuse.org/request/show/309550 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=146	2015-06-01 09:44:23 +00:00
Dominique Leuenberger	7e232add8e	Accepting request 309043 from network 1 OBS-URL: https://build.opensuse.org/request/show/309043 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=109	2015-05-29 09:44:23 +00:00
Ismail Dönmez	f1babf4554	Accepting request 309029 from home:dimstar:Factory - Drop libverto and libverto-libev Requires from the -server package: those package names don't exist and the shared libs are pulled in automatically. - Drop libverto and libverto-libev Requires from the -server package: those package names don't exist and the shared libs are pulled in automatically. OBS-URL: https://build.opensuse.org/request/show/309029 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=144	2015-05-28 08:59:56 +00:00
Ismail Dönmez	d9be576ce1	Accepting request 308898 from home:dimstar:Factory Also build dep libverto for the -mini variant... so it can actually be built OBS-URL: https://build.opensuse.org/request/show/308898 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=143	2015-05-27 16:09:38 +00:00
Marcus Meissner	7991a93622	- pre_checkin.sh aligned changes between krb5/krb5-mini - added krb5.keyring OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=142	2015-05-22 09:30:16 +00:00
Marcus Meissner	8103840325	* Add client support for the Kerberos Cache Manager protocol. If the host * Add support for doing unlocked database dumps for the DB2 KDC back end, * krb5-1.7-doublelog.patch - Work around replay cache creation race; (bnc#898439). krb5-1.13-work-around-replay-cache-creation-race.patch - bnc#897874 CVE-2014-5351: krb5: current keys returned when randomizing the keys for a service principal - added patches: * bnc#897874-CVE-2014-5351.diff OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=141	2015-05-22 09:22:57 +00:00
Andrey Karepin	cdaf49db88	OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=140	2015-05-13 19:33:48 +00:00
Andrey Karepin	71a09ab035	Accepting request 306592 from home:stroeder:branches:network update to 1.13.2 OBS-URL: https://build.opensuse.org/request/show/306592 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=139	2015-05-13 19:25:01 +00:00
Marcus Meissner	24de3e2bab	Accepting request 305915 from home:guohouzuo:freeipa OBS-URL: https://build.opensuse.org/request/show/305915 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=138	2015-05-11 11:41:14 +00:00
Dominique Leuenberger	29cd6a7de7	Accepting request 286672 from network security update 1.13.1 (forwarded request 286613 from stroeder) OBS-URL: https://build.opensuse.org/request/show/286672 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=108	2015-02-22 16:23:32 +00:00
Marcus Meissner	cefda77aa1	Accepting request 286613 from home:stroeder:branches:network security update 1.13.1 OBS-URL: https://build.opensuse.org/request/show/286613 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=136	2015-02-18 17:22:56 +00:00
Dominique Leuenberger	823f9c3d3d	Accepting request 280033 from network 1 OBS-URL: https://build.opensuse.org/request/show/280033 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=107	2015-01-08 22:01:05 +00:00
Marcus Meissner	42eb1db8e7	Accepting request 280024 from home:mlin7442:branches:network update to 1.13, also fixed build with bison3 OBS-URL: https://build.opensuse.org/request/show/280024 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=134	2015-01-06 10:58:20 +00:00
Stephan Kulow	fea3c25a0a	Accepting request 253481 from network 1 OBS-URL: https://build.opensuse.org/request/show/253481 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=106	2014-10-05 18:27:19 +00:00
Marcus Meissner	35dbbe780b	Accepting request 252436 from home:dmdiss:branches:bnc898439_krb_reply_cache_race_factory - Work around replay cache creation race; (bnc#898439). krb5-1.13-work-around-replay-cache-creation-race.patch OBS-URL: https://build.opensuse.org/request/show/252436 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=132	2014-10-01 07:19:37 +00:00
Stephan Kulow	c19ee31ec4	Accepting request 252174 from network 1 OBS-URL: https://build.opensuse.org/request/show/252174 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=105	2014-09-28 17:56:34 +00:00
Marcus Meissner	23582573aa	Accepting request 251631 from home:varkoly:branches:network - bnc#897874 CVE-2014-5351: krb5: current keys returned when randomizing the keys for a service principal - added patches: * bnc#897874-CVE-2014-5351.diff OBS-URL: https://build.opensuse.org/request/show/251631 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=130	2014-09-25 08:28:07 +00:00
Stephan Kulow	f050792a44	Accepting request 247118 from network 1 OBS-URL: https://build.opensuse.org/request/show/247118 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=104	2014-09-03 16:21:36 +00:00
Marcus Meissner	1e26a2fb1a	Accepting request 246966 from home:AndreasStieger:branches:network krb5 5.12.2 - Fix build with doxygen 1.8.8 - adding krb5-1.12-doxygen.patch from upstream See https://build.opensuse.org/request/show/246780 OBS-URL: https://build.opensuse.org/request/show/246966 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=128	2014-09-01 15:41:18 +00:00
Ludwig Nussel	9c37e90ffc	Accepting request 245051 from network Automatic submission by obs-autosubmit OBS-URL: https://build.opensuse.org/request/show/245051 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=102	2014-08-20 15:53:40 +00:00
Christian Kornacker	e1506944cc	- buffer overrun in kadmind with LDAP backend CVE-2014-4345 (bnc#891082) krb5-1.12-CVE-2014-4345-buffer-overrun-in-kadmind-with-LDAP-backend.patch OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=126	2014-08-11 11:01:01 +00:00
Stephan Kulow	be8887f4d7	Accepting request 243586 from network Automatic submission by obs-autosubmit OBS-URL: https://build.opensuse.org/request/show/243586 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=101	2014-08-06 09:42:15 +00:00
Christian Kornacker	f2e853070c	- Fix double-free in SPNEGO [CVE-2014-4343] (bnc#888697) krb5-1.12-CVE-2014-4343-Fix-double-free-in-SPNEGO.patch Fix null deref in SPNEGO acceptor [CVE-2014-4344] krb5-1.12-CVE-2014-4344-Fix-null-deref-in-SPNEGO-acceptor.patch OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=124	2014-07-28 09:58:41 +00:00
Stephan Kulow	ec41724c92	Accepting request 241736 from network 1 OBS-URL: https://build.opensuse.org/request/show/241736 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=100	2014-07-27 06:25:40 +00:00
Christian Kornacker	3ac7b19a80	Accepting request 241590 from home:posophe:branches:network Fix for systemd OBS-URL: https://build.opensuse.org/request/show/241590 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=122	2014-07-21 12:42:45 +00:00
Christian Kornacker	3f646c425e	- denial of service flaws when handling RFC 1964 tokens (bnc#886016) krb5-1.12-CVE-2014-4341-CVE-2014-4342.patch - start krb5kdc after slapd (bnc#886102) - obsolete krb5-plugin-preauth-pkinit-nss (bnc#881674) similar functionality is provided by krb5-plugin-preauth-pkinit OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=121	2014-07-15 08:18:37 +00:00
Stephan Kulow	76cd6119cf	Accepting request 222761 from network don't deliver SysV init files to systemd distributions OBS-URL: https://build.opensuse.org/request/show/222761 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=99	2014-02-19 10:39:16 +00:00
Christian Kornacker	5f3b47a9fc	- don't deliver SysV init files to systemd distributions OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=119	2014-02-18 17:40:34 +00:00
Stephan Kulow	8dcb675a57	Accepting request 215374 from network - update to version 1.12.1 * Make KDC log service principal names more consistently during some error conditions, instead of "<unknown server>" * Fix several bugs related to building AES-NI support on less common configurations * Fix several bugs related to keyring credential caches - upstream obsoletes: krb5-1.12-copy_context.patch krb5-1.12-enable-NX.patch krb5-1.12-pic-aes-ni.patch krb5-master-no-malloc0.patch krb5-master-ignore-empty-unnecessary-final-token.patch krb5-master-gss_oid_leak.patch krb5-master-keytab_close.patch krb5-master-spnego_error_messages.patch - Fix Get time offsets for all keyring ccaches krb5-master-keyring-kdcsync.patch (RT#7820) OBS-URL: https://build.opensuse.org/request/show/215374 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=98	2014-01-29 06:15:26 +00:00
Christian Kornacker	869a682f2d	- update to version 1.12.1 * Make KDC log service principal names more consistently during some error conditions, instead of "<unknown server>" * Fix several bugs related to building AES-NI support on less common configurations * Fix several bugs related to keyring credential caches - upstream obsoletes: krb5-1.12-copy_context.patch krb5-1.12-enable-NX.patch krb5-1.12-pic-aes-ni.patch krb5-master-no-malloc0.patch krb5-master-ignore-empty-unnecessary-final-token.patch OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=117	2014-01-21 15:06:23 +00:00
Stephan Kulow	79d8b3686a	Accepting request 214093 from network OBS-URL: https://build.opensuse.org/request/show/214093 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=97	2014-01-17 15:40:41 +00:00
Christian Kornacker	673bd84f01	extended changelog for Factory OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=115	2014-01-16 13:19:42 +00:00
Michael Calmer	03254981cb	Accepting request 213903 from home:ckornacker:branches:network - update to version 1.12 * Add GSSAPI extensions for constructing MIC tokens using IOV lists * Add a FAST OTP preauthentication module for the KDC which uses RADIUS to validate OTP token values. * The AES-based encryption types will use AES-NI instructions when possible for improved performance. - revert dependency on libcom_err-mini-devel since it's not yet available - update and rebase patches OBS-URL: https://build.opensuse.org/request/show/213903 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=114	2014-01-15 14:14:20 +00:00
Marcus Meissner	9e3edabdc0	OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=113	2013-12-10 16:50:56 +00:00
Marcus Meissner	10b96098f3	Accepting request 210105 from home:neilbrown:branches:network Reduce build dependencies for krb5-mini This requires a change to e2fsprogs which will include the creation of e2fsprogs-mini, so it shouldn't be accepted before that other change is accepted - Reduce build dependencies for krb5-mini by removing doxygen and changing libcom_err-devel to libcom_err-mini-devel - Small fix to pre_checkin.sh so krb5-mini.spec is correct. - Reduce build dependencies for krb5-mini by removing doxygen and changing libcom_err-devel to libcom_err-mini-devel - Small fix to pre_checkin.sh so krb5-mini.spec is correct. OBS-URL: https://build.opensuse.org/request/show/210105 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=112	2013-12-10 09:48:22 +00:00
Stephan Kulow	a487b00b55	Accepting request 208686 from network Automatic submission by obs-autosubmit OBS-URL: https://build.opensuse.org/request/show/208686 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=96	2013-11-28 06:27:28 +00:00
Marcus Meissner	3e0687cac7	Accepting request 207746 from home:ckornacker:branches:network - update to version 1.11.4 - Fix a KDC null pointer dereference [CVE-2013-1417] that could affect realms with an uncommon configuration. - Fix a KDC null pointer dereference [CVE-2013-1418] that could affect KDCs that serve multiple realms. - Fix a number of bugs related to KDC master key rollover. OBS-URL: https://build.opensuse.org/request/show/207746 OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=110	2013-11-20 12:36:50 +00:00
Stephan Kulow	36be5ba0fe	Accepting request 180770 from network - install and enable systemd service files also in -mini package - remove fstack-protector-all from CFLAGS, just use the lighter/fast version already present in %optflags - Use LFS_CFLAGS to build in 32 bit archs. - install and enable systemd service files also in -mini package - remove fstack-protector-all from CFLAGS, just use the lighter/fast version already present in %optflags - Use LFS_CFLAGS to build in 32 bit archs. OBS-URL: https://build.opensuse.org/request/show/180770 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/krb5?expand=0&rev=94	2013-06-25 07:22:45 +00:00

1 2 3 4 5 ...

269 Commits