í«îÛ    krb5-apps-clients-1.6.3-132.6.1                                                     Ž­è         <   >     ,     è            ê          ì          8U‰ KM#î¸‹/Ô=½Â„;ÿ{m(w ª`wkc¬YöçVp½¹"ô¿¬À¤Ty)Ê¢.]ó±•ÜÖ¾(aayáƒ‹Z“±J`ùŒ”\;£ØÀ Êå©Ù2rÏ>ŠÍž2¥ÌiÂÝ˜'_Æñ#æ}—´FñÌ~öZGl¬9à½™½	¡¬Xåq‚Zš±d_~l„u4£ºu;eKó¹•»2-¦ŸfcO¼Aé¥ÇRûÊÆJŸéìXîŠàHb7eIuMøÂÕz;†Ë{• Évwòð(þ"¨2Žµç{¿œ¯¥ï_	¦ï‹tÂ¶´4Æt¥¤›®·÷äÅ¹iœã3~ë‚žýÞD	÷E=kÒ@ìÃPÊ3-þ(îát5ë¨’/ú¨   >   ÿÿÿÀ       Ž­è       6  .Õ   ?     .Å      d            è           é           ê           ì   	   "     í   	   D     î     ä     ï     è     ñ     ì     ò     ð     ó     þ     ö          ÷          ø   	  (     ü     I     ý     j     þ     p          x          Ì     	     ö     
                t          é                     T          ½          &          D          ˜          ¬                    
r     (     
¡     8     
¬   7  9     ˆ   7  :     î   7  F     +ƒ     G     +”     H     +è     I     ,<     X     ,T     Y     ,X     \     ,h     ]     ,¼     ^     -h     b     -§     c     .2     d     .”     e     .™     f     .ž     k     .      l     .¥     z     .µ   C krb5-apps-clients 1.6.3 132.6.1 MIT Kerberos5 client applications Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of cleartext passwords. This package includes some kerberos
compatible client applications like ftp, rpc, rlogin, telnet, ...


Authors:
--------
    The MIT Kerberos Team
    Sam Hartman <hartmans@mit.edu>
    Ken Raeburn <raeburn@mit.edu>
    Tom Yu <tlyu@mit.edu>  KMÝbax  	8¶openSUSE 11.1 openSUSE X11/MIT http://bugs.opensuse.org Productivity/Networking/Security http://web.mit.edu/kerberos/www/ linux i586       x    šœ  Fè  Ç°  ¸l  ™Ø  ˆ(  &˜  &¤ fÈ  &œ  W@  (  	P  
/  û  º  #Œ  +  >AíAíííííííííííí¤¤¤¤¤¤¤¤                                          KMÔKMÕKMÔKMÕKMÕKMÕKMÕKMÕKMÕKMÕKMÕKMÕKMÕKMÓKMÓKMÓKMÓKMÓKMÓKMÓKMÓ  75c1484f52e2b351e3ec6ebfa7651574 3a30333cb4656ad3aa18ea1bc6c96b7e 103409d003e3fa1b138d78919a87ff7c 8dd7fd2c41984ad6cbf5149d0f9fa87d ef153661fa05b9997638794bf643ffa6 c7b087361cd161c95f770b30ced71ce5 66773a6b392b4aaed86a7e58d5cb45fb 474c5708b47133e7f1165d6266588038 86624b31567d9f047949a05e9a198354 2061b6ddb416421e70e14b05e0a58790 17c081eddc35889275ef926ae002a8d0 4c3fda36708282fb28069eeb626ef552 e0e2360df70d5bb2dbe74a01fe8e29db afd9591180e3938988225b4fb871d430 fb5bdc6a9c71fd0672329cabbadb23dd 7fd78245022fe39f56f5d6fdda303c24 2eb73769442f7efdc2cc7a1a53af5c0b 5c434cc831ddc3ab83539f0b94710446 4c8099bf3170b7c6676f96808a54d34d                                                                                                    root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root root krb5-1.6.3-132.6.1.src.rpm    ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿkrb5-apps-clients     J  J  @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   @   Jrpmlib(PayloadFilesHavePrefix) rpmlib(CompressedFileNames) libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.3) libc.so.6(GLIBC_2.3.4) libc.so.6(GLIBC_2.4) libcom_err.so.2 libcrypt.so.1 libdes425.so.3 libdes425.so.3(des425_3_MIT) libdl.so.2 libgssapi_krb5.so.2 libgssapi_krb5.so.2(gssapi_krb5_2_MIT) libk5crypto.so.3 libk5crypto.so.3(k5crypto_3_MIT) libkeyutils.so.1 libkrb4.so.2 libkrb4.so.2(krb4_2_MIT) libkrb5.so.3 libkrb5.so.3(krb5_3_MIT) libkrb5support.so.0 libkrb5support.so.0(krb5support_0_MIT) libncurses.so.5 libresolv.so.2 rpmlib(PayloadIsLzma) 4.0-1 3.0.4-1                          4.4.2-1 4.4.2.3    K?ÀIÕú@IÂ3ÀI¿ÀImÓÀIA ÀI?¯@I	¡ÀHÜÎÀH´ÀH‰À@HXøÀH*Ô@Gþ@Gü¯ÀGÚhÀGbp@GUA@G0W@Gâ@FêwÀFæƒ@FßëÀFÞš@F¸^ÀF–ÀFŒÝ@FˆèÀFq-ÀFm9@FA·ÀF9ÎÀF,ŸÀF&@F#e@FÍÀFª@Eì@EÝ…ÀEÙ‘@EÌb@E½áÀEµøÀE´§@E´§@E¤Õ@EšI@EO#ÀEAôÀEòÀDí”ÀDÜq@D×+@DÄ¶@D©Àmc@suse.de mc@suse.de mc@suse.de mc@suse.de olh@suse.de mc@suse.de olh@suse.de olh@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de ro@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de sschober@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de mc@suse.de - fix integer underflow in AES and RC4 decryption
  CVE-2009-4212, MITKRB5-SA-2009-004 (bnc#561351) - integrate new patches for CVE-2009-0844 and CVE-2009-0845
  (bnc#486722) - more Kerberos denial of service issue fixed (bnc#486722)
  CVE-2009-0844, CVE-2009-0847
  (integrate krb5-1.6-fix-DoS-CVE-2009-0845.dif into
  krb5-1.6-MITKRB5-SA-2009-001.dif)
- fix krb5 code exec (bnc#486723)
  CVE-2009-0846 - fix Kerberos denial of service issue (bnc#485894)
  CVE-2009-0845 - obsolete also old heimdal-lib-XXbit and heimdal-devel-XXbit - do not query IPv6 addresses if no IPv6 address exists on this host
  [bnc#449143] - use Obsoletes: -XXbit only for ppc64 to help solver during distupgrade
  (bnc#437293) - obsolete old -XXbit packages (bnc#437293) - in case we use ldap as database backend, ldap should be
  started before krb5kdc - add new fixes to post 1.6.3 patch
  * fix mem leak in krb5_gss_accept_sec_context()
  * keep minor_status
  * kadm5_decrypt_key: A ktype of -1 is documented as meaning
    "to be ignored"
  * Reject socket fds > FD_SETSIZE - add patches from SVN post 1.6.3
  * krb5_string_to_keysalts: Fix an infinite loop
  * fix some mutex issues
  * better recovery from corrupt rcache files
  * some more small fixes - add case-insensitive.dif (FATE#300771)
- minor fixes for ktutil man page
- reduce rpmlint warnings - Fall back to TCP on kdc-unresolvable/unreachable errors.
- restore valid sequence number before generating requests
  (fix changing passwords in mixed ipv4/ipv6 enviroments) - added baselibs.conf file to build xxbit packages
  for multilib support - modify krb5-config to not output rpath and cflags in --libs
  (bnc#378270) - fix two security bugs:
  * MITKRB5-SA-2008-001(CVE-2008-0062, CVE-2008-0063)
    fix double free [bnc#361373]
  * MITKRB5-SA-2008-002(CVE-2008-0947, CVE-2008-0948)
    Memory corruption while too many open file descriptors
    [bnc#363151]
- change default config file. Comment out the examples. - fix several security bugs:
  * CVE-2007-5894 apparent uninit length
  * CVE-2007-5902 integer overflow
  * CVE-2007-5971 free of non-heap pointer and double-free
  * CVE-2007-5972 double fclose()
  [#346745, #346748, #346746, #346749, #346747] - improve GSSAPI error messages - add coreutils to PreReq - update to krb5 version 1.6.3
  * fix CVE-2007-3999, CVE-2007-4743 svc_auth_gss.c buffer overflow
  * fix CVE-2007-4000 modify_policy vulnerability
  * Add PKINIT support
- remove patches which are upstream now
- enhance init scripts and xinetd profiles - update krb5-1.6.2-post.dif
  * If a KDC returns KDC_ERR_SVC_UNAVAILABLE, it appears that
    that the client library will not failover to the next KDC.
    [#310540] - update krb5-1.6.2-post.dif
  * new -S sname option for kvno
  * read_entropy_from_device on partial read will not fill buffer
  * Bail out if encoded "ticket" doesn't decode correctly.
  * patch for referrals loop - fix a problem with the originally published patch
  for MITKRB5-SA-2007-006 - CVE-2007-3999
  [#302377] - fix execute arbitrary code
  (MITKRB5-SA-2007-006 - CVE-2007-3999,2007-4000)
  [#302377] - add krb5-1.6.2-post.dif
  * during the referrals loop, check to see if the
    session key enctype of a returned credential for the final
    service is among the enctypes explicitly selected by the
    application, and retry with old_use_conf_ktypes if it is not.
  * If mkstemp() is available, the new ccache file gets created but
    the subsequent open(O_CREAT|O_EXCL) call fails because the file
    was already created by mkstemp(). Apply patch from Apple to keep
    the file descriptor open. - update to version 1.6.2
- remove krb5-1.6.1-post.dif all fixes are included in this release - change requires to libcom_err-devel - update krb5-1.6.1-post.dif
  * fix leak in krb5_walk_realm_tree
  * rd_req_decoded needs to deal with referral realms
  * fix buffer overflow in kadmind
    (MITKRB5-SA-2007-005 - CVE-2007-2798)
    [#278689]
  * fix kadmind code execution bug
    (MITKRB5-SA-2007-004 - CVE-2007-2442 - CVE-2007-2443)
    [#271191] - fix unstripped-binary-or-object rpmlint warning - fixing rpmlint warnings and errors:
  * merged logrotate scripts kadmin and krb5kdc into a single file
    krb5-server.
  * moved heimdal2mit-DumpConvert.pl and simple_convert_krb5conf.pl
    from /usr/share/doc/packages/krb5 to /usr/lib/mit/helper.
    adapted krb5.spec and README.ConvertHeimdalMIT accordingly.
  * added surpression filter for
    "devel-file-in-non-devel-package /usr/lib/libgssapi_krb5.so"
    (see [#147912]).
  * set default runlevel of init scripts in chkconfig line to 3 and
    5 - fix uninitialized salt length
- add extra check for keytab file - adding krb5-1.6.1-post.dif
  * fix segfault in krb5_get_init_creds_password
  * remove debug output in ftp client
  * profile stores empty string values without double quotes - update to final 1.6.1 version - add plugin directories to main package - update to version 1.6.1 Beta1
- remove obsolete patches
  (krb5-1.6-post.dif, krb5-1.6-patchlevel.dif)
- rework compile_pie patch - update krb5-1.6-post.dif
  * fix kadmind stack overflow in krb5_klog_syslog
    (MITKRB5-SA-2007-002 - CVE-2007-0957)
    [#253548]
  * fix double free attack in the RPC library
    (MITKRB5-SA-2007-003 - CVE-2007-1216)
    [#252487]
  * fix krb5 telnetd login injection
    (MIT-SA-2007-001 - CVE-2007-0956)
    [#247765] - add ncurses-devel and bison to BuildRequires
- rework some patches - move SuSEFirewall service definitions to
  /etc/sysconfig/SuSEfirewall2.d/services - add firewall definition to krb5-server, FATE #300687 - update krb5-1.6-post.dif
- move some applications into the right package - update krb5-1.6-post.dif - krb5-1.6-fix-passwd-tcp.dif and krb5-1.6-fix-sendto_kdc-memset.dif
  are now upstream. Remove patches.
- fix leak in krb5_kt_resolve and krb5_kt_wresolve - fix "local variable used before set" in ftp.c
  [#237684] - krb5-devel should require keyutils-devel - update to version 1.6
  * Major changes in 1.6 include
  * Partial client implementation to handle server name referrals.
  * Pre-authentication plug-in framework, donated by Red Hat.
  * LDAP KDB plug-in, donated by Novell.
- remove obsolete patches - fix for
    kadmind (via RPC library) calls uninitialized function pointer
    (CVE-2006-6143)(Bug #225990)
    krb5-1.5-MITKRB5-SA-2006-002-fix-code-exec.dif
- fix for
    kadmind (via GSS-API mechglue) frees uninitialized pointers
    (CVE-2006-6144)(Bug #225992)
    krb5-1.5-MITKRB5-SA-2006-003-fix-free-of-uninitialized-pointer.dif - Fix Requires in krb5-devel
  [Bug #231008] - fix "local variable used before set" [#217692]
- fix strncat warning - add a default kadm5.dict file
- require $network on daemon start - fix function call with too few arguments [#203837] - update to version 1.5.1
- remove obsolete patches which are now included upstream
  * krb5-1.4.3-MITKRB5-SA-2006-001-setuid-return-checks.dif
  * trunk-fix-uninitialized-vars.dif - krb5 setuid return check fixes
  krb5-1.4.3-MITKRB5-SA-2006-001-setuid-return-checks.dif
  [#182351] - remove update-messages - add check for krb5_prop in services to kpropd init script.
  [#192446] - update to version 1.5
  * KDB abstraction layer, donated by Novell.
  * plug-in architecture, allowing for extension modules to be
    loaded at run-time.
  * multi-mechanism GSS-API implementation ("mechglue"),
    donated by Sun Microsystems
  * Simple and Protected GSS-API negotiation mechanism ("SPNEGO")
    implementation, donated by Sun Microsystems
- remove obsolete patches and add some new bax 1263342557     	  	  	  	  	  	  	  	  	  	  	  	  	  	  	  	  	  	  	  	  	 ž  ž žÏ ž žÔ žØ ž žÜ žû žÿ ž žä žô ž€ žŠ žZ ž~ žq ž¡ ž ž.                           1.6.3-132.6.1                                                                   mit bin ftp gss-client ksu rcp rlogin rsh sclient sim_client telnet uuclient v4rcp kftp.1.gz krcp.1.gz krlogin.1.gz krsh.1.gz ksu.1.gz ktelnet.1.gz sclient.1.gz v4rcp.1.gz /usr/lib/ /usr/lib/mit/ /usr/lib/mit/bin/ /usr/share/man/man1/ -march=i586 -mtune=i686 -fmessage-length=0 -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector -funwind-tables -fasynchronous-unwind-tables -g obs://build.suse.de/SUSE:openSUSE:11.1:Update:Test/standard/05e19570bb7b7f990873559aeb72798a-krb5 cpio lzma 2 i586 i586-suse-linux %i¿Ý;ÍûœIC±I¸Ý   ?   ÿÿü    ]   ÿÿÿÿÿÿÿÿ "ÌkÀ%Œ?8„O^ç*Ã.ÚÎì=Zßndsb—®ðÁ®—X~e‡ßàQìfr.‡G?ÂDÏðÀZ¯öC¼¤“¡H 9a¯Ï\)Í&(½[r-3Ô)>LZZgGSÊp3‚åµãÝ-u¼w+Tò  ÛÏ}€â'Ó¹<§ý-c6B9—”†S¤âa"­zET#§sm; øÐÃìxFvŒßI—$¾‹cÌ<ÃFþGŸc”`¦W­$ãî„ËSFaSsÖÔ´-À(»Ç”xá2->öŽiÞ˜R¶_|€‹í~Ðe‚½Ùr24"½Fšyò¨a5ÈkÔ<gh@ð‘4¨²[5tq—öD[cH &ŽÈ>o¼È2'B¨Ón„%:zU.Õ@çvêô äO7(F ?Fó\ vø}ì~ý6KQÙ-û¿äpÒe¾yC±­VZ£ž$D÷”|™Ž#ÉÄ< PK°\L,û[ƒóí©)@rh¤FµØŽ#“Þ>´r)™ ¶ØÇx‚OÞ%ð:Î¦%Tà†nýbÀðDÅ£EšF¸–×À3É5Ê›¶E8¯Ä/Ó(¹1°6íˆÛØÞIXŠm·†(~tJ_Ñ‘%Ÿhínys 0ïÑKûecÊwLü$—˜ýóS1Knò[qÐ ¾2ñ%§[ßÐK˜‹³We„Ëê´íîi½•Úûy—¢Àøj¬­{§ï”£Ã'ÇZ¨YÓú—RY\äÁrlXšÏ"…7yï Í¬ËƒCã»Ÿ0O`º3ŽÂ<ÄÔ ²Å­¦ÏhéOè˜
Þ#àèW¿I23R‡åæ$ùãqµÐ›²Ñ·–‹ÇxãpRJ|AÞ©¹¤T#y'“+EÜÕ\«äg±Ö»¦ˆ›Ïf@h?Z‹ÎtcŠä“
ë<ó&*0Ã$›¿}î7J½bÝF½KþÑôMimp¦¥$á—ð²Råo)ÝL¶_åØˆ9ìo6¸c?N8FÏŽ”n\Obð¤jº¹ZP¾à7U’mó÷êÿiý½íåñe¡gÅÝ¡ýz#ý4ŽÑ	æWitt™ƒ`½çzV#~£c`Œ8&Úà¨Š˜a>^Û4¦ÛIA+*gžßÆ'\'eø*‡ö×Eÿ! _ÿ 0y…Ê÷òÍ$eŸ¾ÉòB(¥¶¹ì=œÅïT¬l°|ãj
4í/`K×1ÁÐë>9“ÔgäÓÈñŠ¶ÚI¤rD¼«À=…DÝîÃx[ST(cãI…'‘CúY¿Æ@à&Ž…ZZ	ÀDž ªw¤Y¹.6e]ûÑ[Qè$šä?eÁmÏà;Q3„÷Ï’²~ž£žÆå[§~<ˆ%”&àò‚!î	üOVƒ}%ºUÃ—¸b‚ zl=Aà"Ik½R5¶ÀpÙN¶r	ho{JôÊÑîU0UÚøC]5âˆîé¨kôoý¥ÿý Äp˜ñ¾‘ÐÁ¢‘{Ø¡·Øùñ¢Îî«ãkèÂœ`üVƒ‚I+J««?¥auië-Æ±ì‹¯aG…L}1^éuû€‰Ku‰(ÔLˆ)/Ü,êV»à"Û:ù<}¿–¾#jÅV93k¿tNãÙJ<C×„¥R·Ò:å^žzLóß3&¤Ô÷‡ˆ¶ey¨‰Â/ )”;Ã!9Ð/÷y&ÙÊ>/ü)MK\¶Qô#¥^OáVJ¶Â4bŽˆ¹1ûÒýŒˆµ'jrA	“aFwB‡èÕŠ£ø”…ËÓ4&–ý8w?. xØ0ËÝ“Kˆ{Ï¯%­?%Ñ+ÑÊ-[€;WåáÞ?‹Xà^üUÉ™«¶C¶åToï$pxÖ"š\_ù„ ueXwã¡#h¥%?ð§
`0
ÞìW á_yJõ°æ	¡50l[?T›rñ‹)ÖN0ÀZQ~*ßÐ.üWšN¢S÷çðÙÕØŸ®Á‹MëúZ€@:¦V\Iî–¢æÐÒ‘&ü:³›‹÷Vn†Úåb‹>—J*ªìB¢à$“¼X	ÚbŸ%!×þÓ¸