Fedora 36: FEDORA-2022-6744980220 Critical Booth Service Fix

Booth manages tickets which authorize cluster sites located

in geographically dispersed locations to run resources.

It facilitates support of geographically distributed

clustering in Pacemaker.

Remove Alias directive from booth@.service unit file ---- Security fix for

CVE-2022-2553

* Thu Sep 29 2022 Jan Friesse - 1.0-262.3.d0ac26c.git

- Remove Alias directive from booth@.service unit file

* Thu Jul 28 2022 Jan Friesse - 1.0-262.2.d0ac26c.git

- Fix authfile directive handling in booth config file

(fixes CVE-2022-2553)

- Add enable-authfile option

[ 1 ] Bug #2109251 - CVE-2022-2553 booth: authfile directive in booth config file is completely ignored.

https://bugzilla.redhat.com/show_bug.cgi?id=2109251

su -c 'dnf upgrade --advisory FEDORA-2022-6744980220' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it: