Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

gssntlmssp-devel-1.2.0-1.5 RPM for s390x

From OpenSuSE Ports Tumbleweed for s390x

Name: gssntlmssp-devel Distribution: openSUSE:Factory:zSystems
Version: 1.2.0 Vendor: openSUSE
Release: 1.5 Build date: Wed Feb 15 11:48:14 2023
Group: Development/Libraries/C and C++ Build host: reproducible
Size: 3229 Source RPM: gssntlmssp-1.2.0-1.5.src.rpm
Packager: https://bugs.opensuse.org
Url: https://github.com/gssapi/gss-ntlmssp
Summary: Development header for GSSAPI NTLMSSP
A header file with definitions for custom GSSAPI extensions for NTLMSSP.

Provides

Requires

License

ISC

Changelog

* Wed Feb 15 2023 Martin Hauke <[email protected]>
  - Adapt license changes from upstream
    * LGPL-3.0-or-later -> ISC
  - Upstream moved to github
  - Update to version 1.2.0
    * Implement gss_set_cred_option.
    * Allow to gss_wrap even if NEGOTIATE_SEAL is not negotiated.
    * Move HMAC code to OpenSSL EVP API.
    * Fix crash bug when acceptor credentials are NULL.
    * Translations update from Fedora Weblate.
    Fix CVE:
    * CVE-2023-25563 (boo#1208278): multiple out-of-bounds read
      when decoding NTLM fields.
    * CVE-2023-25564 (boo#1208279): memory corruption when decoding
      UTF16 strings.
    * CVE-2023-25565 (boo#1208280): incorrect free when decoding
      target information.
    * CVE-2023-25566 (boo#1208281): memory leak when parsing
      usernames.
    * CVE-2023-25567 (boo#1208282): out-of-bounds read when
      decoding target information.
  - Update to version 1.1
    * various build fixes and better compatibility when a MIC is
      requested.
  - Update to version 1.0
    * Fix test_gssapi_rfc5587.
    * Actually run tests with make check.
    * Add two tests around NTLMSSP_NEGOTIATE_LMKEY.
    * Refine LM compatibility level logic.
    * Refactor the gssntlm_required_security function.
    * Implement reading LM/NT hashes.
    * Add test for smpasswd-like user files.
    * Return confidentiality status.
    * Fix segfault in sign/seal functions.
    * Fix dummy signature generation.
    * Use UCS16LE instead of UCS-2LE.
    * Provide a zero lm key if the password is too long.
    * Completely omit CBs AV pairs when no CB provided.
    * Change license to the more permissive ISC.
    * Do not require cached users with winbind.
    * Add ability to pass keyfile via cred store.
    * Remove unused parts of Makefile.am.
    * Move attribute names to allocated strings.
    * Adjust serialization for name attributes.
    * Fix crash in acquiring credentials.
    * Fix fallback to external_creds interface.
    * Introduce parse_user_name() function.
    * Add test for parse_user_name.
    * Change how we assemble user names in ASC.
    * Use thread local storage for winbind context.
    * Make per thread winbind context optional.
    * Fixed memleak of usr_cred.
    * Support get_sids request via name attributes.
    * Fixed memory leaks found by valgrind.
  - Update to version 0.9
    * add support for getting session key.
    * Add gss_inquire_attrs_for_mech().
    * Return actual data for RFC5587 API.
    * Add new Windows version flags.
    * Add Key exchange also when wanting integrity only.
    * Drop support for GSS_C_MA_NOT_DFLT_MECH.
* Thu Feb 27 2020 Martin Hauke <[email protected]>
  - Specfile cleanup
* Wed Aug 14 2019 Simona Avornicesei <[email protected]>
  - Fixed build on Fedora / CentOS
* Wed Aug 14 2019 Simona Avornicesei <[email protected]>
  - Fixed build on OpenSUSE Tumbleweed
* Tue Apr 23 2019 Simona Avornicesei <[email protected]>
  - build GSSNTLMSSP package v0.8.0 from https://pagure.io/gssntlmssp
* Thu Apr 18 2019 Simo Sorce <[email protected]>
  - New upstream release 0.8.0:
    * Add compatibility with OpenSSL 1.1.0
    * Port some documentation into the tree
    * Rename and split the README file
    * Add support for RFC5801
    * Add support to return SSF value
* Fri Jun 03 2016 Simo Sorce <[email protected]>
  - New upstream release 0.7.0:
    * Return the actual_mech_type when requested
    * Add test to check actual_mech is actually returned
    * Fix gss_inquire_cred with no creds
    * Return actual mech on accept context too
    * Add test for accept returning mech
    * Add placeholder inquire_name
    * Fix a regression in error handling
    * Check that we are actually asking for a known oid
    * Move setting seq numbers to a spearate function
    * Add context extension to reset crypto state
* Mon Feb 23 2015 Simo Sorce <[email protected]>
  - Update EPEL to latest version
* Sun Jan 26 2014 Simo Sorce <[email protected]>
  - Fixes #1058025
  - New upstream release 0.3.1:
    * Fix segfault in init context.
* Sun Jan 12 2014 Simo Sorce <[email protected]>
  - New upstream release 0.3.0:
    * Added support for NTLMv1 Signing and Sealing completing full coverage
      of the NTLM protocol
    * Added a number of GSSAPI calls to inquire, export and import context and
      credentials, in preparation for making it work with GSS-Proxy
    * Various fixes memleak and other fixes

Files

/usr/include/gssapi/gssapi_ntlmssp.h


Generated by rpm2html 1.8.1

Fabrice Bellet, Wed Dec 4 00:10:59 2024