krb5-devel-32bit-1.10.2-10.2.1>t 4 DpQΤ/=„P fG|*]4LU0.*L|*Μ"6HFaqBdbMtΚpqKYrD$,nT3lRW6YM%-a?s'^gM^$D'ҥ].,.4 ׃dhL;5\ʶ[!b |Y]Q+}`Lz" Wf&$A1\>'c`?Pb&0܎Ӱ.VX5ȉQΤ/=„j~v5(L" :i_c[T OZ^rCuP2}uh 87Y]}lJ$ʏ%ȕK}@j(]I5=9, &0&^C˱sbd6.d(d*M~S9.,aRC; ٘3A w+Ҹ'fB=a GJCa~-Z([`=k4r.6xSaI=il,41c79d239641c2808e24a9c38e861f4053de5f11!>8(?(d ! M<@HLZcg  $ @ x  |@\)(@8H)9): )G$H%I%8X%HY%P\%l]%^&jb&c'2d'e'f'l'u'v'w(x(Py(Ckrb5-devel-32bit1.10.210.2.1MIT Kerberos5 - Include Files and LibrariesKerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartext passwords. This package includes Libraries and Include Files for DevelopmentQPbuild19)openSUSE 12.3openSUSEMIThttp://bugs.opensuse.orgDevelopment/Libraries/C and C++http://web.mit.edu/kerberos/www/linuxx86_64)AAQPQPQPQPQPQPQPQPQPQPQPQPQPQP143719fde9cc0cb08a140637661d5625libgssrpc.so.4.1libk5crypto.so.3.1libkadm5clnt_mit.solibkadm5clnt_mit.so.8.0libkadm5srv_mit.solibkadm5srv_mit.so.8.0libkdb5.so.6.0libkrb5.so.3.3libkrb5support.so.0.1libverto-k5ev.so.0.0libverto.so.0.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootkrb5-1.10.2-10.2.1.src.rpmkrb5-devel-32bitkrb5-devel-32bit(x86-32)@   /bin/shrpmlib(CompressedFileNames)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsLzma)3.0.4-14.0-14.4.6-14.10.2QsP@P}L@P}L@PyWPnO؀OЗOF@OJO'NxNxN=@N=@NHNNS@NP@NNP@MMlM6@L8LeL|L|L@LT@KKŮ@KK"@K@K@KK&(JJ@JY@J&eJ @mc@suse.delchiquitto@suse.comcoolo@suse.comcoolo@suse.comcoolo@suse.commc@suse.decoolo@suse.commc@suse.demc@suse.destefan.bruens@rwth-aachen.demeissner@suse.decoolo@suse.comcoolo@suse.commc@suse.demc@suse.derhafer@suse.demc@suse.demc@suse.demc@novell.commc@novell.commc@suse.demc@suse.demc@suse.demc@suse.demc@suse.demc@suse.demc@suse.demc@suse.delchiquitto@novell.commc@suse.demc@suse.demc@suse.demc@suse.demc@suse.demc@suse.demc@suse.dejengelh@medozas.demc@suse.decoolo@novell.commc@suse.demc@suse.de- package missing file (bnc#794784)- krb5-1.10-spin-loop.patch: fix spin-loop bug in k5_sendto_kdc (bnc#793336)- revert the -p usage in %postun to fix SLE build- buildrequire systemd by pkgconfig provide to get systemd-mini- do not require systemd in krb5-mini- add systemd service files for kadmind, krb5kdc and kpropd - add sysconfig templates for kadmind and krb5kdc- fix %files section for krb5-mini- fix gcc47 issues- update to version 1.10.2 obsolte patches: * krb5-1.7-nodeplibs.patch * krb5-1.9.1-ai_addrconfig.patch * krb5-1.9.1-ai_addrconfig2.patch * krb5-1.9.1-sendto_poll.patch * krb5-1.9-canonicalize-fallback.patch * krb5-1.9-paren.patch * krb5-klist_s.patch * krb5-pkinit-cms2.patch * krb5-trunk-chpw-err.patch * krb5-trunk-gss_delete_sec.patch * krb5-trunk-kadmin-oldproto.patch * krb5-1.9-MITKRB5-SA-2011-006.dif * krb5-1.9-gss_display_status-iakerb.patch * krb5-1.9.1-sendto_poll2.patch * krb5-1.9.1-sendto_poll3.patch * krb5-1.9-MITKRB5-SA-2011-007.dif - Fix an interop issue with Windows Server 2008 R2 Read-Only Domain Controllers. - Update a workaround for a glibc bug that would cause DNS PTR queries to occur even when rdns = false. - Fix a kadmind denial of service issue (null pointer dereference), which could only be triggered by an administrator with the "create" privilege. [CVE-2012-1013] - Fix access controls for KDB string attributes [CVE-2012-1012] - Make the ASN.1 encoding of key version numbers interoperate with Windows Read-Only Domain Controllers - Avoid generating spurious password expiry warnings in cases where the KDC sends an account expiry time without a password expiry time - Make PKINIT work with FAST in the client library. - Add the DIR credential cache type, which can hold a collection of credential caches. - Enhance kinit, klist, and kdestroy to support credential cache collections if the cache type supports it. - Add the kswitch command, which changes the selected default cache within a collection. - Add heuristic support for choosing client credentials based on the service realm. - Add support for $HOME/.k5identity, which allows credential choice based on configured rules.- add autoconf macro to devel subpackage- fix license in krb5-mini- add autoconf as buildrequire to avoid implicit dependency- remove call to suse_update_config, very old work around- fix KDC null pointer dereference in TGS handling (MITKRB5-SA-2011-007, bnc#730393) CVE-2011-1530- fix KDC HA feature introduced with implementing KDC poll (RT#6951, bnc#731648)- fix minor error messages for the IAKERB GSSAPI mechanism (see: http://krbdev.mit.edu/rt/Ticket/Display.html?id=7020)- fix kdc remote denial of service (MITKRB5-SA-2011-006, bnc#719393) CVE-2011-1527, CVE-2011-1528, CVE-2011-1529- use --without-pam to build krb5-mini- add patches from Fedora and upstream - fix init scripts (bnc#689006)- update to version 1.9.1 * obsolete patches: MITKRB5-SA-2010-007-1.8.dif krb5-1.8-MITKRB5-SA-2010-006.dif krb5-1.8-MITKRB5-SA-2011-001.dif krb5-1.8-MITKRB5-SA-2011-002.dif krb5-1.8-MITKRB5-SA-2011-003.dif krb5-1.8-MITKRB5-SA-2011-004.dif krb5-1.4.3-enospc.dif * replace krb5-1.6.1-compile_pie.dif- fix kadmind invalid pointer free() (MITKRB5-SA-2011-004, bnc#687469) CVE-2011-0285- Fix vulnerability to a double-free condition in KDC daemon (MITKRB5-SA-2011-003, bnc#671717) CVE-2011-0284- Fix kpropd denial of service (MITKRB5-SA-2011-001, bnc#662665) CVE-2010-4022 - Fix KDC denial of service attacks with LDAP back end (MITKRB5-SA-2011-002, bnc#663619) CVE-2011-0281, CVE-2011-0282- Fix multiple checksum handling vulnerabilities (MITKRB5-SA-2010-007, bnc#650650) CVE-2010-1324 * krb5 GSS-API applications may accept unkeyed checksums * krb5 application services may accept unkeyed PAC checksums * krb5 KDC may accept low-entropy KrbFastArmoredReq checksums CVE-2010-1323 * krb5 clients may accept unkeyed SAM-2 challenge checksums * krb5 may accept KRB-SAFE checksums with low-entropy derived keys CVE-2010-4020 * krb5 may accept authdata checksums with low-entropy derived keys CVE-2010-4021 * krb5 KDC may issue unrequested tickets due to KrbFastReq forgery- fix csh profile (bnc#649856)- update to krb5-1.8.3 * remove patches which are now upstrem - krb5-1.7-MITKRB5-SA-2010-004.dif - krb5-1.8.1-gssapi-error-table.dif - krb5-MITKRB5-SA-2010-005.dif- change environment variable PATH directly for csh (bnc#642080)- fix a dereference of an uninitialized pointer while processing authorization data. CVE-2010-1322, MITKRB5-SA-2010-006 (bnc#640990)- add correct error table when initializing gss-krb5 (bnc#606584, bnc#608295)- fix GSS-API library null pointer dereference CVE-2010-1321, MITKRB5-SA-2010-005 (bnc#596826)- fix a double free vulnerability in the KDC CVE-2010-1320, MITKRB5-SA-2010-004 (bnc#596002)- update to version 1.8.1 * include krb5-1.8-POST.dif * include MITKRB5-SA-2010-002- update krb5-1.8-POST.dif- fix a bug where an unauthenticated remote attacker could cause a GSS-API application including the Kerberos administration daemon (kadmind) to crash. CVE-2010-0628, MITKRB5-SA-2010-002 (bnc#582557)- add post 1.8 fixes * Add IPv6 support to changepw.c * fix two problems in kadm5_get_principal mask handling * Ignore improperly encoded signedpath AD elements * handle NT_SRV_INST in service principal referrals * dereference options while checking KRB5_GET_INIT_CREDS_OPT_CHG_PWD_PRMPT * Fix the kpasswd fallback from the ccache principal name * Document the ticket_lifetime libdefaults setting * Change KRB5_AUTHDATA_SIGNTICKET from 142 to 512- update to version 1.8 * Increase code quality * Move toward improved KDB interface * Investigate and remedy repeatedly-reported performance bottlenecks. * Reduce DNS dependence by implementing an interface that allows client library to track whether a KDC supports service principal referrals. * Disable DES by default * Account lockout for repeated login failures * Bridge layer to allow Heimdal HDB modules to act as KDB backend modules * FAST enhancements * Microsoft Services for User (S4U) compatibility * Anonymous PKINIT - fix KDC denial of service CVE-2010-0283, MITKRB5-SA-2010-001 (bnc#571781) - fix KDC denial of service in cross-realm referral processing CVE-2009-3295, MITKRB5-SA-2009-003 (bnc#561347) - fix integer underflow in AES and RC4 decryption CVE-2009-4212, MITKRB5-SA-2009-004 (bnc#561351) - moved krb5 applications (telnet, ftp, rlogin, ...) to krb5-appl- add baselibs.conf as a source- enhance '$PATH' only if the directories are available and not empty (bnc#544949)- readd lost baselibs.conf- update to final 1.7 release- update to version 1.7 Beta2 * Incremental propagation support for the KDC database. * Flexible Authentication Secure Tunneling (FAST), a preauthentiation framework that can protect the AS exchange from dictionary attack. * Implement client and KDC support for GSS_C_DELEG_POLICY_FLAG, which allows a GSS application to request credential delegation only if permitted by KDC policy. * Fix CVE-2009-0844, CVE-2009-0845, CVE-2009-0846, CVE-2009-0847 -- various vulnerabilities in SPNEGO and ASN.1 code. 1.10.2-10.2.11.10.2-10.2.1baselibs-32bitbinkrb5-configlibgssrpc.solibk5crypto.solibkadm5clnt.solibkadm5clnt_mit.solibkadm5srv.solibkadm5srv_mit.solibkdb5.solibkrb5.solibkrb5support.solibverto-k5ev.solibverto.so/usr/lib//usr/lib/baselibs-32bit//usr/lib/baselibs-32bit/bin/-fomit-frame-pointer -fmessage-length=0 -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -gobs://build.opensuse.org/openSUSE:12.3/standard/7b8b059300d3559a819d707f9349f560-krb5cpiolzma5x86_64-suse-linuxPOSIX shell script, ASCII text executabledirectoryR?] crt:bLLDStD-䠬 ;n+52)+^.tH dP};;ɚt9#j֩URWU @oLrNmE3ohrmQrjd0h=+/ B(oě >iet=YTSu;rV},Dz|o qYma8C|?Ǖ)gQdpzd:fHQ?K1iќИ#OK*:b+ j1.ɩ]s"(w_<`N1]+#4(?,]x55W;, ]+N~>pd)VT-+!: xp~/gY ԃ$?mPm?f>?|DicavI5Hh4wa2<OBexWr7hU9}_IpJX(4VO4|Uq̥1EE;t:+QB%30.or&Ov=S֨W+,ij|Q.R4g88 8zƙ R_9q_BSkq>ۼ%׀]lU 4KA_Jsjr"]z|P &,.홣ȏ$*i^) lcjqDZc6osgҵا׏!R{YOJ֑}˸]5N>j^sQ6pLҫ;x9l|x6rꦙw@ ȩc7SەN8"ɅZ[iwx݌@ S}sYrUTb)ؼ)4Bŗnņg`Ei z-JrjQbÛSN T=9؟d- +ʡR"O1!Ɠp"ɲRҝku{ҡX%`ZR"!N'.!wu7/-O7づ1WydQoLMzV_4D#7ѾԞ|>HzE^>W)Gn:Е &z&B"ʂWVX| rjs0b?$p:d#9io;)P,l hrM߅ӹ좣ϗl 5IdMeZGݝV_op+hHӺVpcd—:6 \BB l)j + \bwQ_JBAtsgK{'_8d+ڟ7`cĄ)=BL.w&Dh+ L3aAG 4Z1HWC\-vjdL~Nڄ4N?WcIlo:P˞tnttx@qQ)jatBv?A^zxXߞ_?R^ m 6Ҝ M9>0Hj@r