Пакет libkrb5-devel: Изменения

- Update to latest security release of krb5-1.14
- Security fixes:
  + CVE-2017-11368 Fix a KDC denial of service vulnerability caused by unset
    status strings
  + CVE-2017-11462 Preserve GSS contexts on init/accept failure

- Update to first spring release 1.14.5

- Add _keytab group for default keytab /etc/krb5.keytab

- 1.14.4
- fixed CVE-2016-3120

- krb5kdc.service: start after slapd

- 1.14.2
- fixed CVE-2015-2695,CVE-2015-2696,CVE-2015-2697,CVE-2015-2698,CVE-2015-8629,CVE-2015-8630,CVE-2015-8631,CVE-2016-3119
- allow verification of attributes on krb5.conf

- Comment out includedir directive in /etc/krb5.conf because samba
  cannot get Kerberos context while domain provision

- 1.13.2
- fixed CVE-2014-5355, CVE-2015-2694
- add patches from fedora

- 1.13.1;
- drop patches already applied by upstream.

- fix for MITKRB5-SA-2015-001 (CVE-2014-5352, CVE-2014-9421,
  CVE-2014-9422, CVE-2014-9423)

- fixed CVE-2014-5353, CVE-2014-5354

- 1.13
- fixed CVE-2014-5351
- move header from /usr/include/krb5 to /usr/include
- drop kdcrotate service
- update krb5.conf:
  + add [logging] example
  + add [realms] example
  + add [domain_realm] example
  + define default_ccache_name as KEYRING:persistent:%{uid}

- applied upstream fix for libdb2
- disabled t_kprop.py test

- 1.12;
- update fedora patches;
- import memory leak fixes from upstream master (RT#7803, RT#7805).

- 1.11.3
- drop obsolete patch 23.

- Increase run order from 40 to 41 to prevent error reading from LDAP:
  'preauth pkinit failed to initialize: No realms configured correctly
  for pkinit support'

- add patch 23 from upstream git to fix kpasswd udp ping-pong
  (CVE-2002-2443).

- 1.11.2;
- drop obsolete patch 22.

- 1.11.1
  + fix a null pointer dereference in the KDC PKINIT code
    (CVE-2013-1415);
- drop obsolete patch 21;
- add patch 22 from upstream git to fix a memory leak in
  krb5_get_init_creds_keytab (upstream ticket 7586).

- added %check section.

- 1.11;
- dropped obsolete patches;
- updated fedora patches;
- add patch 21 from fedora;
- update gear rules to better match upstream distribution;
- change way we deal with preprocessor loop in krb5/krb5.h (instead
  of patch that caused build problems we do it with sed in %install);
- dropped internal headers packaging;
- minor packaging improvements.

- Fixed build

- CVE-2012-1015

- Added necessary headers into libkrb5-devel (ALT #27467)

- 1.10.2
- CVE-2012-1013

- Add systemd unit files

- resurrect krb5-1.10-alt-avoid-preprocessor-loop.patch

- 1.10.1
- get rid of almost empty services, clients subpackages
- replace server, workstation packages by Provides/Obsoletes

- check if ftp daemon fails to set effective group id
  (MITKRB5-SA-2011-005, CVE-2011-1526).

- krb5-config: disabled dependency on libkeyutils-devel