Debian
cfrpki package

cfrpki 1.4.2-1~deb11u1 source package in Debian

Changelog

cfrpki (1.4.2-1~deb11u1) bullseye-security; urgency=high

  * Rebuild for bullseye-security. Fixes:
    - Certificate chain loop.
    - RRDP Gzip bomb (CVE-2021-43174 CVE-2021-3912).
    - RRDP Slowloris (CVE-2021-43173 CVE-2021-3909).
    - ROA with ASCII NUL char (CVE-2021-3910).
    - Malformed ROAs (CVE-2021-3911).
    - Repo contains 100GB of trash.
    - Dot-dot-slash path traversal (CVE-2021-3907).
    - Improper preservation of permissions (CVE-2021-3978).

 -- Marco d'Itri <email address hidden>  Sun, 26 Dec 2021 14:38:26 +0100

Upload details

Uploaded by:: Marco d'Itri on 2022-03-26

Uploaded to:: Bullseye

Original maintainer:: Marco d'Itri

Architectures:: any

Section:: misc

Urgency:: Very Urgent

See full publishing history Publishing

Series	Pocket	Published	Component	Section
Bullseye	release	on 2022-03-26	main	misc

Builds

Downloads

File	Size	SHA-256 Checksum
cfrpki_1.4.2-1~deb11u1.dsc	1.7 KiB	de2d0d2e6cee557f18457f4fb81dc074df5a158add7c23bfa5694bdb61c814c9
cfrpki_1.4.2.orig.tar.xz	2.0 MiB	48d1ae5053afa81884ecfcba2bafa6b338304d7f41c97a4cf0a036d66c98eebd
cfrpki_1.4.2-1~deb11u1.debian.tar.xz	5.4 KiB	2f2f98f435af0ec205166e2046addae8b773511cd6727332af19464ed50033f9

No changes file available.

Debiancfrpki package

cfrpki 1.4.2-1~deb11u1 source package in Debian

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Binary packages built by this source

Debian
cfrpki package