krb5-pkinit-openssl-1.10.3-42z1.el6_7.x86_64
[123 KiB] |
Changelog
by Robbie Harwood (2016-02-12):
- Fix CVE-2015-8629 and CVE-2015-8631
- Also fix a spec trigger issue that prevents building
- Resolves: #1306973
|
krb5-pkinit-openssl-1.10.3-37.el6_6.x86_64
[121 KiB] |
Changelog
by Roland Mainz (2015-04-01):
- fix for CVE-2014-5355 (#1193939) "krb5: unauthenticated
denial of service in recvauth_common() and others"
|
krb5-pkinit-openssl-1.10.3-33.el6.x86_64
[120 KiB] |
Changelog
by Nalin Dahyabhai (2014-08-06):
- actually apply that last patch
|
krb5-pkinit-openssl-1.10.3-10.el6_4.3.x86_64
[116 KiB] |
Changelog
by Nalin Dahyabhai (2013-05-31):
- pull up fix for UDP ping-pong flaw in kpasswd service (CVE-2002-2443,
|
krb5-pkinit-openssl-1.10.3-10.el6_4.2.x86_64
[116 KiB] |
Changelog
by Nalin Dahyabhai (2013-04-09):
- incorporate upstream patch to fix a NULL pointer dereference while processing
certain TGS requests (CVE-2013-1416, #950342)
|
krb5-pkinit-openssl-1.10.3-10.el6_4.1.x86_64
[116 KiB] |
Changelog
by Nalin Dahyabhai (2013-03-05):
- incorporate upstream patch to fix a NULL pointer dereference when the client
supplies an otherwise-normal-looking PKINIT request (CVE-2013-1415, #917909)
- add patch to avoid dereferencing a NULL pointer in the KDC when handling a
draft9 PKINIT request (#917909, CVE-2012-1016)
|
krb5-pkinit-openssl-1.10.3-10.el6.x86_64
[115 KiB] |
Changelog
by Nalin Dahyabhai (2012-12-18):
- make -server conflict with older versions of SELinux policy that didn't
allow us to use eventfds, which libverto's backend may depend on in order
to properly shut down a multi-worker KDC (#871524)
|
krb5-pkinit-openssl-1.10.3-10.el6.i686
[115 KiB] |
Changelog
by Nalin Dahyabhai (2012-12-18):
- make -server conflict with older versions of SELinux policy that didn't
allow us to use eventfds, which libverto's backend may depend on in order
to properly shut down a multi-worker KDC (#871524)
|
krb5-pkinit-openssl-1.9-33.el6_3.2.x86_64
[106 KiB] |
Changelog
by Nalin Dahyabhai (2012-07-19):
- pull up the patch to correct a possible NULL pointer dereference in
kadmind (CVE-2012-1013, #827517)
|
krb5-pkinit-openssl-1.9-22.el6_2.1.x86_64
[103 KiB] |
Changelog
by Nalin Dahyabhai (2011-11-17):
- add candidate patch to fix a NULL pointer dereference while processing TGS
requests (MITKRB5-SA-2011-007, #754046)
|
krb5-pkinit-openssl-1.9-9.el6_1.2.x86_64
[101 KiB] |
Changelog
by Nalin Dahyabhai (2011-09-20):
- apply upstream patch to fix a null pointer derference with the LDAP kdb
backend (CVE-2011-1527), an assertion failure with multiple kdb backends
(CVE-2011-1528), and a null pointer dereference with multiple kdb backends
(CVE-2011-1529) (#740084)
|
krb5-pkinit-openssl-1.9-9.el6_1.1.x86_64
[100 KiB] |
Changelog
by Nalin Dahyabhai (2011-06-21):
- apply upstream patch by way of Burt Holzman to fall back to a non-referral
method in cases where we might be derailed by a KDC that rejects the
canonicalize option (for example, those from the RHEL 2.1 or 3 era) (#714866)
|