Fedora 33: rpki-client 2021-31012ee5a0 Security Advisory

The OpenBSD rpki-client is a free, easy-to-use implementation of the

Resource Public Key Infrastructure (RPKI) for Relying Parties (RP) to

facilitate validation of the Route Origin of a BGP announcement. The

program queries the RPKI repository system, downloads and validates

Route Origin Authorisations (ROAs) and finally outputs Validated ROA

Payloads (VRPs) in the configuration format of OpenBGPD, BIRD, and

also as CSV or JSON objects for consumption by other routing stacks.

rpki-client 7.5 =============== * Make rpki-client more resilient regarding

untrusted input: - Fail repository synchronisation after 15min runtime.

- Limit the number of repositories per TAL. - Don't allow `DOCTYPE`

definitions in RRDP XML files. - Fix detection of HTTP redirect loops. *

Limit the number of concurrent `rsync` processes. * Fix `CRLF` in TAL files.

* Tue Nov 9 2021 Robert Scheck 7.5-1

- Upgrade to 7.5 (#2021523)

[ 1 ] Bug #2021523 - rpki-client-7.5 is available

https://bugzilla.redhat.com/show_bug.cgi?id=2021523

su -c 'dnf upgrade --advisory FEDORA-2021-31012ee5a0' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure