í«îÛ    krb5-plugin-kdb-ldap-1.8.3-67.1                                                     Ž­è          e   >      U     è            ì           í         A  -ð(˜XT=ÔF-g‹÷…<ˆ? R’Té$„³jˆÚâ Ÿlyó1?:
Pˆr"P?ô€Âºn ŸAªÈ0ñIke)”}AÉ»x97¹   >   ÿÿÿÀ      Ž­è       7  !ê   ?     !Ú      d            è           é           ê           ì   	   "     í   	   U     î     À     ï     Ä     ñ     Ì     ò     Ð     ó     Þ     ö     ç     ÷     ë     ø   	       ü     %     ý     F     þ     L          T          ˆ     	     ¢     
     ¼          ð          ½          ð          $          e          ¦          À          ô   
       ä           d           	!      (     	Y     8     	`     9     	Ð     :     7     >          @     +     F     :     G     P     H     „     I     ¸     X     È   
  Y     ð   
  \          ]     D     ^     Ü   	  b      ”     c     !     d     !®     e     !³     f     !¸     l     !º     z     !Ê   C krb5-plugin-kdb-ldap 1.8.3 67.1 MIT Kerberos5 Implementation--LDAP Database Plugin Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of clear text passwords. This package contains the LDAP
database plugin.


Authors:
--------
    The MIT Kerberos Team
    Sam Hartman <hartmans@mit.edu>
    Ken Raeburn <raeburn@mit.edu>
    Tom Yu <tlyu@mit.edu>  RˆŸ×build05  [eopenSUSE 11.4 openSUSE MIT http://bugs.opensuse.org Productivity/Networking/Security http://web.mit.edu/kerberos/www/ linux i586               ,       ‰L     éX     f1  Z­  ·AíAíAíí¡ÿ¡ÿíAííAí¤¤¤                          RˆŸ£RˆŸ£RˆŸªRˆŸªRˆŸ¦RˆŸ¦RˆŸ«RˆŸ¯RˆŸ®RˆŸ©RˆŸ©RˆŸ©RˆŸ¦   55014768aa3dba34a612fcff722d7999   581a276ce9571cfe942777690903fb28  56fa127ec3ef9e4eb1ab9a9d25e87069  26afdaa65ce6785939d5f65a9a2d10bb 2a3e751d54844601312127f8185d9b4e b1fcd93c4ccb180159db4a252051517a     libkdb_ldap.so.1.0 libkdb_ldap.so.1.0                                                           root root root root root root root root root root root root root root root root root root root root root root root root root root krb5-1.8.3-67.1.src.rpm   ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿkldap.so.0 kldap.so.0(HIDDEN) kldap.so.0(kldap.so.0) kldap.so.0(kldap_0_MIT) libkdb_ldap.so.1 libkdb_ldap.so.1(HIDDEN) libkdb_ldap.so.1(kdb_ldap_1_MIT) libkdb_ldap.so.1(libkdb_ldap.so.1) krb5-plugin-kdb-ldap krb5-plugin-kdb-ldap(x86-32)               
  
  @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   
krb5-server /sbin/ldconfig /sbin/ldconfig rpmlib(PayloadFilesHavePrefix) rpmlib(CompressedFileNames) libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.3) libc.so.6(GLIBC_2.3.4) libc.so.6(GLIBC_2.4) libc.so.6(GLIBC_2.8) libcom_err.so.2 libgssrpc.so.4 libgssrpc.so.4(gssrpc_4_MIT) libk5crypto.so.3 libk5crypto.so.3(k5crypto_3_MIT) libkadm5srv_mit.so.7 libkadm5srv_mit.so.7(kadm5srv_mit_7_MIT) libkdb5.so.4 libkdb5.so.4(kdb5_4_MIT) libkdb_ldap.so.1 libkdb_ldap.so.1(kdb_ldap_1_MIT) libkrb5.so.3 libkrb5.so.3(krb5_3_MIT) libkrb5support.so.0 libkrb5support.so.0(krb5support_0_MIT) libldap-2.4.so.2 libpthread.so.0 libpthread.so.0(GLIBC_2.0) rpmlib(PayloadIsLzma) 1.8.3   4.0-1 3.0.4-1                           4.4.6-1 4.8.0  R|Ò@QÍzÀQu&@QLGÀP@Oß@NœÀM¦áÀM~@M6Ò@Lö8ÀLÉeÀLÁ|ÀLÁ|ÀL ‡@LT@KóÒÀKÅ®@K¿ÀK»"@K¨­@K¨­@K ÀK&(ÀJýJ@JYÐ@J&eÀJ
¶@ckornacker@suse.de johann.luce@wanadoo.fr mc@suse.de wr@rosenauer.org mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de lchiquitto@novell.com mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de jengelh@medozas.de mc@suse.de coolo@novell.com mc@suse.de mc@suse.de - fix Multi-realm KDC null deref
  CVE-2013-1418 (bnc#849240)
  + added bug-849240-CVE-2013-1418-fix-multi-realm-kdc-null-deref.dif - fix a kpasswd UDP ping-pong security bug (CVE-2002-2443) with
  CVE-2002-2443.patch - fix prep_reprocess_req NULL pointer deref
  CVE-2013-1416 (bnc#816413)
  bug-816413-CVE-2013-1416-prep_reprocess_req-NULL-ptr-deref.dif - fix PKINIT null pointer deref
  CVE-2013-1415 (bnc#806715)
  bug-806715-CVE-2013-1415-fix-PKINIT-null-pointer-deref.dif - fix potentially execute code flaws
  CVE-2012-1015 (bnc#770172) - fix kadmind denial of service via null pointer dereference
  CVE-2012-1013 (bnc#765485) - fix kdc remote denial of service
  (MITKRB5-SA-2011-006, bnc#719393)
  CVE-2011-1528, CVE-2011-1529 - fix kadmind invalid pointer free()
  (MITKRB5-SA-2011-004, bnc#687469)
  CVE-2011-0285 - Fix vulnerability to a double-free condition in KDC daemon
  (MITKRB5-SA-2011-003, bnc#671717)
  CVE-2011-0284 - Fix kpropd denial of service
  (MITKRB5-SA-2011-001, bnc#662665)
  CVE-2010-4022
- Fix KDC denial of service attacks with LDAP back end
  (MITKRB5-SA-2011-002, bnc#663619)
  CVE-2011-0281, CVE-2011-0282 - Fix multiple checksum handling vulnerabilities
  (MITKRB5-SA-2010-007, bnc#650650)
  CVE-2010-1324
  * krb5 GSS-API applications may accept unkeyed checksums
  * krb5 application services may accept unkeyed PAC checksums
  * krb5 KDC may accept low-entropy KrbFastArmoredReq checksums
  CVE-2010-1323
  * krb5 clients may accept unkeyed SAM-2 challenge checksums
  * krb5 may accept KRB-SAFE checksums with low-entropy derived keys
  CVE-2010-4020
  * krb5 may accept authdata checksums with low-entropy derived keys
  CVE-2010-4021
  * krb5 KDC may issue unrequested tickets due to KrbFastReq forgery - fix csh profile (bnc#649856) - update to krb5-1.8.3
  * remove patches which are now upstrem
  - krb5-1.7-MITKRB5-SA-2010-004.dif
  - krb5-1.8.1-gssapi-error-table.dif
  - krb5-MITKRB5-SA-2010-005.dif - change environment variable PATH directly for csh
  (bnc#642080) - fix a dereference of an uninitialized pointer while processing
  authorization data.
  CVE-2010-1322, MITKRB5-SA-2010-006 (bnc#640990) - add correct error table when initializing gss-krb5 (bnc#606584,
  bnc#608295) - fix GSS-API library null pointer dereference
  CVE-2010-1321, MITKRB5-SA-2010-005 (bnc#596826) - fix a double free vulnerability in the KDC
  CVE-2010-1320, MITKRB5-SA-2010-004 (bnc#596002) - update to version 1.8.1
  * include krb5-1.8-POST.dif
  * include MITKRB5-SA-2010-002 - update krb5-1.8-POST.dif - fix a bug where an unauthenticated remote attacker could cause
  a GSS-API application including the Kerberos administration
  daemon (kadmind) to crash.
  CVE-2010-0628, MITKRB5-SA-2010-002 (bnc#582557) - add post 1.8 fixes
  * Add IPv6 support to changepw.c
  * fix two problems in kadm5_get_principal mask handling
  * Ignore improperly encoded signedpath AD elements
  * handle NT_SRV_INST in service principal referrals
  * dereference options while checking
    KRB5_GET_INIT_CREDS_OPT_CHG_PWD_PRMPT
  * Fix the kpasswd fallback from the ccache principal name
  * Document the ticket_lifetime libdefaults setting
  * Change KRB5_AUTHDATA_SIGNTICKET from 142 to 512 - update to version 1.8
  * Increase code quality
  * Move toward improved KDB interface
  * Investigate and remedy repeatedly-reported performance
    bottlenecks.
  * Reduce DNS dependence by implementing an interface that allows
    client library to track whether a KDC supports service
    principal referrals.
  * Disable DES by default
  * Account lockout for repeated login failures
  * Bridge layer to allow Heimdal HDB modules to act as KDB
    backend modules
  * FAST enhancements
  * Microsoft Services for User (S4U) compatibility
  * Anonymous PKINIT
- fix KDC denial of service
  CVE-2010-0283, MITKRB5-SA-2010-001 (bnc#571781)
- fix KDC denial of service in cross-realm referral processing
  CVE-2009-3295, MITKRB5-SA-2009-003 (bnc#561347)
- fix integer underflow in AES and RC4 decryption
  CVE-2009-4212, MITKRB5-SA-2009-004 (bnc#561351)
- moved krb5 applications (telnet, ftp, rlogin, ...) to krb5-appl - add baselibs.conf as a source - enhance '$PATH' only if the directories are available
  and not empty (bnc#544949) - readd lost baselibs.conf - update to final 1.7 release - update to version 1.7 Beta2
  * Incremental propagation support for the KDC database.
  * Flexible Authentication Secure Tunneling (FAST), a preauthentiation
    framework that can protect the AS exchange from dictionary attack.
  * Implement client and KDC support for GSS_C_DELEG_POLICY_FLAG, which
    allows a GSS application to request credential delegation only if
    permitted by KDC policy.
  * Fix CVE-2009-0844, CVE-2009-0845, CVE-2009-0846, CVE-2009-0847 --
    various vulnerabilities in SPNEGO and ASN.1 code. /sbin/ldconfig /sbin/ldconfig build05 1384685527                               ‡ ˆ ‰ ¶   ƒ   „   ³   `   Œ   ¤   §   ¦ Ì                  €   €   €   €   €   €   €   €               1.8.3-67.1 1.8.3-67.1                                              krb5 plugins kdb kldap.so libkdb_ldap.so libkdb_ldap.so.1 libkdb_ldap.so.1.0 sbin kdb5_ldap_util krb5 kerberos.ldif kerberos.schema kdb5_ldap_util.8.gz /usr/lib/ /usr/lib/krb5/ /usr/lib/krb5/plugins/ /usr/lib/krb5/plugins/kdb/ /usr/lib/mit/ /usr/lib/mit/sbin/ /usr/share/doc/packages/ /usr/share/doc/packages/krb5/ /usr/share/man/man8/ -fomit-frame-pointer -fmessage-length=0 -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -g obs://build.opensuse.org/openSUSE:Evergreen:Maintenance:212/openSUSE_Evergreen_11.4/dc830de05bda17529df2d5ca56690536-krb5.openSUSE_Evergreen_11.4 drpm lzma 5 i586-suse-linux $&.9½#¼ˆø÷NIOj§   ?   ÿÿü   ]  € ÿÿÿÿÿÿÿÿ "ÌkÀ%Œ?8„O^èˆÍµ§Ð¶bº2eR¶Cë±P†ñ&¢úØ•¬Ÿ¤6x9Xy]Ó’IûôùÖßv“WÅººœ>mÒ¨nºäÙJª{L€<·âjÅ\}öóÍp{¸„	Üëw[½L U‹X'îû”_Ö(Î¢Í!›3Ü­
<†€5~úýý¯£tŽˆ©èQP3®GHÐ
]¬¥pÎ*À?þ¢“Ix6±-žÊÛ˜g²ïá\í]ëÆjÄW¯™õÎã8kZî6…s¥Èw#ÇìÊ­TŠ¥Š_Úì£ÖÕœOÏhï»|’ÜÄfçþA…±$¦wÄ+û¤vÓÞž{Õ÷çßkŸ[ƒãôÎÎ•Û¥ƒƒ;Ü‘`Aå×zÅ^§Ò pxU-É
ÐcB±Y£ü–_R3ŠšÉ<)Kf¹”Ÿ*¿¥xt\3¦.Ij'6±ñÄ°oÅùà3dqÔÎŠ8–Iíó”îfÉ’Þ£u»E1\/Ð½•yøù’ªíÔþnšpö‚}LÝYC¹¥ŸúúG<ô¦fçÛ®Ã«‰ßAœy|‚þÇö3¢AåîLwËkñ3MT‚JtÅ—ûŸÄîåu‰ŒzÛÓ¤ÁîãUEÂYti$¯o¡;jI]kÖp• ÑØF!Dl¢æûQ|yÔ!&M³©ŠNO‡q‰8.Ùåwÿ)³;‘û
*.ÐòÆõÏ
™mŠ´lÍ¿I íÿÓäÄ«†õ’R­¨Ç¼RRwp¸üÇ7æuæë¢¦"¾«c_/Y ù&1‹Zº²+Nª¨„
¹®c:,›‹(Wn§J/0Êm ÖíEOc0Ú|Û¢<=ë‚µ°°-f ïµX¼,ìH»žð¹TÐk€?Ù7€­pLÓ}»µK‡É¤'ƒÒ|zCÅ$ JozªõAëö¹›™|È&ù¶Œ2n®MÕy7#ŒÖðþõ÷©ó¨’5Mþo Áò1C\žNÐÈ:Í«PxÀy	Æ=è|}ƒßôÕ8V«ôPO:î
-¯y`‚^Ù¸E&³ä R[ÃkÂyäva´¾óÒ@›`<„¨qT{(cÏ/ÁéÞÓ7&s­º¤
F0JŸì{wª
ø´œ¾pNÒj~ ™û!`¦éW¸:(¥—H˜%}¤ÎÎÅ^nt¸?†‘¹*=_àÈ„qzÒ€šQŠJ§Y7»tïT4[Ï”Ù{‚\1xóèÃI\nAPü«Š>A¬{†Ç‘ë0tN¯öò'c‘"d[œ;ûØjEý?¢9új} o—G²Ôà†päð†`ûYLÏyy¿Ë>À'„×äû=lïÃ@ŒlkÈµXë¾¾|7D¨@k>ªÓNpYXdÉvcfîÌ9’ÈÆ,¤¾ŸÒ·I	y;ö¬ªÕá
óõºH0FƒÅu	h®®òý]@òÉ[AªP-gfïæð°ñ¨£`*'öíCx…4ýè)½–¬DùDœÂèœØî\š/'I#8O7X™Î ¬×åòlÎÅÔ8ê…´i¯~ÊãÆ9žo‘
Ïñ†9å0ýÅVÐ­ûª_²*y“~ç3¬Çûh4ÊÓŒƒßH9úT¸£ò8|¤ÂÄ¨Dˆ“ÚgË¤àëÆ9s’7HDMì,)úq—®XÜïÌìaa½î Wœa¥,'°â¿'@%]sDKÜHåÀÒôWï´#* ŽÎ´üÞ¹ßyù™p'ˆåß êhzb3èŒã¤ÄYMA5¶ÿ2dE€ëHÂÕ Ì™fcGáH’¹ë>³"UJñÆX¿|ZÃoªŸœ® >ýr.yÃäs.¦Ùô¬}ì[&€:r%êÔZË9ç—`ðtq—oM¢€UÌ3Îãƒ'ïÒ÷…¯¶9½7;¦©L{>e{Ÿ†gÆsRµß÷Ÿ®»mqœº:É{v¿[ÍÍ@‘q]Ì¶ÉÁ‰¡gÊ¹ÝI«`zîˆi=[]\R7,šIä’iÔ®\çp(µ¶¼Â¬í‡3ìÞGäˆEï–(ØFKmgúë¯ƒíÇ¯Ü’©ŒðÓJƒº´2JõT¸Øt/užx¶ì
Ê|„»èø‹.ˆsL…ì‚àÓÛ¬H4•r¶«wi¢vÎ±	¿Ð?§”«)OÄ>u'ù†?Ê°ö¶“¬
{éÈÊ1¢3B8SNoöœ3•ÇbˆL…qËæþçë·0’â!Ñv¬g:e†ºN¹5?¿ÆÕw-™™“ïôî÷–ÑÃÃlüÄ×° ¯EZ|8ñÍ½w}š´õ6Ë~B5ìÆÖ9Ýt!iºì­Un¡ê’?;õP3äz!‰ÕdCffIÚ%ZíC—ÛztÿÜ{ùtçê Ž¾^A«Sô9¤ðŠƒ‘²ÕÊÆ§¤¦No¬ÕÌ‡*€½÷”;’ø.÷ÍGIAH]ãl2HÕ<ËøðXaïçQyDÌê+ÀšáhÝä¾ê‰Î½Bë‹Ëßo€!:ß¢lö"VB°Ä^ûÕ:'1†—ÀÂ!§ÔQçU«Í`1ìf«Åó‰Q%âü…"Ü—ÛŽ¤ZÀc d£4\«\¿¼cÐ«ì½ùà½l»‰ Úz“sY8k$>#&#“…ï’6=ÏèÝZ¡Ì¯cgÍJ+çM—¬PžÞšÖåÊï•JÔG@Æ1LŒé4‚¤ïŠ·ö}5kHœšÞÛ·eøÏµ®F@:ñU”qÕ¹‹{WÀÏ/÷j45ý9S,c'ÛS½óUÌÁÓ:
Qµi)ž2, ä{ª˜ð]‚W×C¦4ü×ÑÃƒe2Q¢Ö«†ÑúÁ¼é‡2 ’ydÏ9ü´"ðV^\‰GþúZ%