Public bug reported: In Ubuntu we provide a cryptographic core based on a small set of packages that we FIPS certify [0]. Applications and libraries should not bundle their own crypto code but should use the cryptographic core to benefit from the certification, but also importantly to reduce bugs due to small cryptographic libraries that are not monitored for low level crypto CVEs. This bug is to change libkrb5 to use the openssl crypto code instead of bundling its own on the next ubuntu release.
[0]. https://ubuntu.com/security/fips ** Affects: krb5 (Ubuntu) Importance: Undecided Status: New ** Description changed: In Ubuntu we provide a cryptographic core based on a small set of packages that we FIPS certify [0]. Applications and libraries should not bundle their own crypto code but should use the cryptographic core to benefit from the certification, but also importantly to reduce bugs due to small cryptographic libraries that are not monitored for low level crypto CVEs. This bug is to change libkrb5 to use the openssl crypto - code instead of bundling its own. - + code instead of bundling its own on the next ubuntu release. [0]. https://ubuntu.com/security/fips -- You received this bug notification because you are a member of Ubuntu Server/Client Support Team, which is subscribed to krb5 in Ubuntu. Matching subscriptions: Ubuntu Server/Client Support Team https://bugs.launchpad.net/bugs/1943530 Title: link libkrb5 with openssl To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/krb5/+bug/1943530/+subscriptions -- Mailing list: https://launchpad.net/~enterprise-support Post to : [email protected] Unsubscribe : https://launchpad.net/~enterprise-support More help : https://help.launchpad.net/ListHelp
