libk5crypto3 - MIT Kerberos runtime libraries - Crypto Library

Property Value
Distribution Ubuntu 16.04 LTS (Xenial Xerus)
Repository Ubuntu Main amd64
Package filename libk5crypto3_1.13.2+dfsg-5_amd64.deb
Package name libk5crypto3
Package version 1.13.2+dfsg
Package release 5
Package architecture amd64
Package type deb
Category libs
License -
Maintainer Ubuntu Developers <>
Download size 79.13 KB
Installed size 290.00 KB
Kerberos is a system for authenticating users and services on a network.
Kerberos is a trusted third-party service.  That means that there is a
third party (the Kerberos server) that is trusted by all the entities on
the network (users and services, usually called "principals").
This is the MIT reference implementation of Kerberos V5.
This package contains the runtime cryptography libraries used by
applications and Kerberos clients.


Package Version Architecture Repository
libk5crypto3_1.13.2+dfsg-5ubuntu2.1_i386.deb 1.13.2+dfsg i386 Ubuntu Updates Main
libk5crypto3_1.13.2+dfsg-5ubuntu2.1_amd64.deb 1.13.2+dfsg amd64 Ubuntu Updates Main
libk5crypto3_1.13.2+dfsg-5_i386.deb 1.13.2+dfsg i386 Ubuntu Main
libk5crypto3 - - -


Name Value
libc6 >= 2.14
libkrb5support0 >= 1.13~alpha1+dfsg


Name Value
libkrb53 -


Type URL
Binary Package libk5crypto3_1.13.2+dfsg-5_amd64.deb
Source Package krb5

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install libk5crypto3 deb package:
    # sudo apt-get install libk5crypto3




2016-02-23 - Sam Hartman <>
krb5 (1.13.2+dfsg-5) unstable; urgency=high
*  Security Update
* Verify decoded kadmin C strings [CVE-2015-8629]
CVE-2015-8629: An authenticated attacker can cause kadmind to read
beyond the end of allocated memory by sending a string without a
terminating zero byte. Information leakage may be possible for an
attacker with permission to modify the database. (Closes: #813296)
* Check for null kadm5 policy name [CVE-2015-8630]
CVE-2015-8630: An authenticated attacker with permission to modify a
principal entry can cause kadmind to dereference a null pointer by
supplying a null policy value but including KADM5_POLICY in the mask.
(Closes: #813127)
* Fix leaks in kadmin server stubs [CVE-2015-8631]
CVE-2015-8631: An authenticated attacker can cause kadmind to leak
memory by supplying a null principal name in a request which uses one.
Repeating these requests will eventually cause kadmind to exhaust all
available memory. (Closes: #813126)
2015-11-04 - Benjamin Kaduk <>
krb5 (1.13.2+dfsg-4) unstable; urgency=high
* Import upstream patches fixing regressions in the previous upload:
- CVE-2015-2698: the patch for CVE-2015-2696 caused memory corruption
for applications calling gss_export_sec_context() on contexts
established using the IAKERB mechanism.
- Supply gss_import_sec_context implementations for SPNEGO and IAKERB,
which were not implemented due to the erroneous belief that the
exported context tokens would be tagged with the underlying
context's mechanism.
2015-10-26 - Benjamin Kaduk <>
krb5 (1.13.2+dfsg-3) unstable; urgency=high
* Import upstream patches for three CVEs:
- CVE-2015-2695: SPNEGO context aliasing during establishment
- CVE-2015-2696: IAKERB context aliasing during establishment
- CVE-2015-2697: unsafe string handling in TGS processing
2015-06-25 - Benjamin Kaduk <>
krb5 (1.13.2+dfsg-2) unstable; urgency=medium
* No-change rebuild to target unstable
2015-05-14 - Benjamin Kaduk <>
krb5 (1.13.2+dfsg-1) experimental; urgency=medium
* New upstream release:
- Fix importing GSS composite export names
- Fix kadm5.acl wildcard matching when early lines have partial matches
- Disable principal renames for LDAP; they do not work properly and are
hard to fix
- Fix LDAP ticket policies on big-endian LP64 systems
- Fix memory leak in DB2 iteration
- Prevent requires_preauth bypass (CVE-2015-2694), Closes: #783557
* Add python to build-depends-indep, since we call it manually during
the documentation build, Closes: #746395
2015-03-16 - Benjamin Kaduk <>
krb5 (1.13.1+dfsg-1) experimental; urgency=low
* New upstream release:
- Make the KDC default to listening on TCP (as well as UDP)
- Bump DAL major version for krb5_db_iterate() API change; KDB modules
will need to be rebuilt
- Let ksu use any keytab entry to verify the obtained TGT
- Improve kadm5_randkey_principal interop with Solaris KDCs
- Export symbols for some public gss interfaces
- Allow the logger to work with redirected stderr
- Remove length limit on PKINIT PKCS#12 prompts
2015-05-13 - Benjamin Kaduk <>
krb5 (1.12.1+dfsg-20) unstable; urgency=high
* Import upstream patch for CVE-2015-2694, Closes: #783557
* Bump Standards-Version to 3.9.6 (no changes needed)
2015-03-20 - Sam Hartman <>
krb5 (1.12.1+dfsg-19) unstable; urgency=medium
* mark systemd unit directories as optional, Closes: #780831
2015-02-18 - Benjamin Kaduk <>
krb5 (1.12.1+dfsg-18) unstable; urgency=high
* Import upstream patch for CVE-2014-5355, Closes: #778647

See Also

Package Description
libkadm5clnt-mit9_1.13.2+dfsg-5_amd64.deb MIT Kerberos runtime libraries - Administration Clients
libkadm5clnt7-heimdal_1.7~git20150920+dfsg-4ubuntu1_amd64.deb Heimdal Kerberos - kadmin client library
libkadm5srv-mit9_1.13.2+dfsg-5_amd64.deb MIT Kerberos runtime libraries - KDC and Admin Server
libkadm5srv8-heimdal_1.7~git20150920+dfsg-4ubuntu1_amd64.deb Libraries for Heimdal Kerberos
libkafs0-heimdal_1.7~git20150920+dfsg-4ubuntu1_amd64.deb Heimdal Kerberos - KAFS support library
libkdb5-8_1.13.2+dfsg-5_amd64.deb MIT Kerberos runtime libraries - Kerberos database
libkdc2-heimdal_1.7~git20150920+dfsg-4ubuntu1_amd64.deb Heimdal Kerberos - KDC support library
libkeyutils-dev_1.5.9-8ubuntu1_amd64.deb Linux Key Management Utilities (development)
libkeyutils1_1.5.9-8ubuntu1_amd64.deb Linux Key Management Utilities (library)
libklibc-dev_2.0.4-8ubuntu1_amd64.deb kernel headers used during the build of klibc
libklibc_2.0.4-8ubuntu1_amd64.deb minimal libc subset for use with initramfs
libklu1.3.3_4.4.6-1_amd64.deb circuit simulation sparse LU factorization library
libkmod-dev_22-1ubuntu4_amd64.deb libkmod development files
libkmod2_22-1ubuntu4_amd64.deb libkmod shared library
libkpathsea-dev_2015.20160222.37495-1_amd64.deb TeX Live: path search library for TeX (development part)