← Back to team overview

enterprise-support team mailing list archive

  1. enterprise-support team
  2. Mailing list archive
  3. Message #08504

[Bug 1943530] [NEW] link libkrb5 with openssl

  Thread PreviousDate PreviousThread Next 
Public bug reported:

In Ubuntu we provide a cryptographic core based on a small set of
packages that we FIPS certify [0]. Applications and libraries should not
bundle their own crypto code but should use the cryptographic core to
benefit from the certification, but also importantly to reduce bugs due
to small cryptographic libraries that are not monitored for low level
crypto CVEs. This bug is to change libkrb5 to use the openssl crypto
code instead of bundling its own on the next ubuntu release.

[0]. https://ubuntu.com/security/fips

** Affects: krb5 (Ubuntu)
     Importance: Undecided
         Status: New

** Description changed:

  In Ubuntu we provide a cryptographic core based on a small set of
  packages that we FIPS certify [0]. Applications and libraries should not
  bundle their own crypto code but should use the cryptographic core to
  benefit from the certification, but also importantly to reduce bugs due
  to small cryptographic libraries that are not monitored for low level
  crypto CVEs. This bug is to change libkrb5 to use the openssl crypto
- code instead of bundling its own.
- 
+ code instead of bundling its own on the next ubuntu release.
  
  [0]. https://ubuntu.com/security/fips

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to krb5 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1943530

Title:
  link libkrb5 with openssl

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/krb5/+bug/1943530/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next