Fedora 31: 2020-9f31ce1df2 Critical: rpki-client Authentication Bypass

The OpenBSD rpki-client is a free, easy-to-use implementation of the

Resource Public Key Infrastructure (RPKI) for Relying Parties (RP) to

facilitate validation of the Route Origin of a BGP announcement. The

program queries the RPKI repository system, downloads and validates

Route Origin Authorisations (ROAs) and finally outputs Validated ROA

Payloads (VRPs) in the configuration format of OpenBGPD, BIRD, and

also as CSV or JSON objects for consumption by other routing stacks.

# rpki-client 6.7p1 * Security fix: Incorrect use of `EVP_PKEY_cmp` allowed

an authentication bypass

* Wed Jul 29 2020 Robert Scheck 6.7p1-1

- Upgrade to 6.7p1 (#1861137)

* Wed Jul 29 2020 Fedora Release Engineering - 6.7p0-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[ 1 ] Bug #1861137 - rpki-client-6.7p1 is available

https://bugzilla.redhat.com/show_bug.cgi?id=1861137

su -c 'dnf upgrade --advisory FEDORA-2020-9f31ce1df2' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/