wok annotate gsasl/description.txt @ rev 25496
Up expat (2.5.0), CVE-2022-43680. Again.
| author | Pascal Bellard <pascal.bellard@slitaz.org> |
|---|---|
| date | Fri Dec 02 10:26:08 2022 +0000 (18 months ago) |
| parents | |
| children |
| rev | line source |
|---|---|
| Hans-G?nter@24627 | 1 GNU SASL is an implementation of the Simple Authentication and |
| Hans-G?nter@24627 | 2 Security Layer framework and a few common SASL mechanisms. |
| Hans-G?nter@24627 | 3 SASL is used by network servers (e.g., IMAP, SMTP, XMPP) to |
| Hans-G?nter@24627 | 4 request authentication from clients, and in clients to |
| Hans-G?nter@24627 | 5 authenticate against servers. |
| Hans-G?nter@24627 | 6 |
| Hans-G?nter@24627 | 7 GNU SASL consists of a C library (libgsasl), a command-line |
| Hans-G?nter@24627 | 8 application (gsasl), and a manual. |
| Hans-G?nter@24627 | 9 The library supports the ANONYMOUS, CRAM-MD5, DIGEST-MD5, |
| Hans-G?nter@24627 | 10 EXTERNAL, GS2-KRB5, GSSAPI, LOGIN, NTLM, OPENID20, PLAIN, |
| Hans-G?nter@24627 | 11 SCRAM-SHA-1, SCRAM-SHA-1-PLUS, SCRAM-SHA-256, SCRAM-SHA-256-PLUS, |
| Hans-G?nter@24627 | 12 SAML20, and SECURID mechanisms. |
| Hans-G?nter@24627 | 13 |
| Hans-G?nter@24627 | 14 The library is portable because it does not do network |
| Hans-G?nter@24627 | 15 communication by itself, but rather leaves it up to the calling |
| Hans-G?nter@24627 | 16 application. |
| Hans-G?nter@24627 | 17 The library is flexible with regards to the authorization |
| Hans-G?nter@24627 | 18 infrastructure used, as it utilizes callbacks into the application |
| Hans-G?nter@24627 | 19 to decide whether an user is authorized or not. |