cfrpki 1.4.2-1~deb11u1 source package in Debian
Changelog
cfrpki (1.4.2-1~deb11u1) bullseye-security; urgency=high * Rebuild for bullseye-security. Fixes: - Certificate chain loop. - RRDP Gzip bomb (CVE-2021-43174 CVE-2021-3912). - RRDP Slowloris (CVE-2021-43173 CVE-2021-3909). - ROA with ASCII NUL char (CVE-2021-3910). - Malformed ROAs (CVE-2021-3911). - Repo contains 100GB of trash. - Dot-dot-slash path traversal (CVE-2021-3907). - Improper preservation of permissions (CVE-2021-3978). -- Marco d'Itri <email address hidden> Sun, 26 Dec 2021 14:38:26 +0100
Upload details
- Uploaded by:
- Marco d'Itri
- Uploaded to:
- Bullseye
- Original maintainer:
- Marco d'Itri
- Architectures:
- any
- Section:
- misc
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Bullseye | release | main | misc |
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
cfrpki_1.4.2-1~deb11u1.dsc | 1.7 KiB | de2d0d2e6cee557f18457f4fb81dc074df5a158add7c23bfa5694bdb61c814c9 |
cfrpki_1.4.2.orig.tar.xz | 2.0 MiB | 48d1ae5053afa81884ecfcba2bafa6b338304d7f41c97a4cf0a036d66c98eebd |
cfrpki_1.4.2-1~deb11u1.debian.tar.xz | 5.4 KiB | 2f2f98f435af0ec205166e2046addae8b773511cd6727332af19464ed50033f9 |
No changes file available.