Fedora 37: clevis-pin-tpm2 2023-37ae269843 | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-37ae269843
2023-05-18 00:49:56.087782
--------------------------------------------------------------------------------

Name        : clevis-pin-tpm2
Product     : Fedora 37
Version     : 0.5.2
Release     : 5.fc37
URL         : https://github.com/fedora-iot/clevis-pin-tpm2/
Summary     : Clevis PIN for unlocking with TPM2 supporting Authorized Policies
Description :
Clevis PIN for unlocking with TPM2 supporting Authorized Policies.

--------------------------------------------------------------------------------
Update Information:

Recent updates for the `tokio`, `h2`, and `openssl` crates addressed some
(potential or confirmed) security or soundness issues:  - `tokio`:
[RUSTSEC-2023-0005](https://rustsec.org/advisories/RUSTSEC-2023-0005.html) -
`h2`: [RUSTSEC-2023-0034](https://rustsec.org/advisories/RUSTSEC-2023-0034.html)
/ [CVE-2023-26964](https://nvd.nist.gov/vuln/detail/CVE-2023-26964) - `openssl`:
[RUSTSEC-2023-0022](https://rustsec.org/advisories/RUSTSEC-2023-0022.html),
[RUSTSEC-2023-0023](https://rustsec.org/advisories/RUSTSEC-2023-0023.html),
[RUSTSEC-2023-0024](https://rustsec.org/advisories/RUSTSEC-2023-0024.html)  This
update contains rebuilds of all affected applications against the latest
versions of these crates, which have addressed all linked issues.
--------------------------------------------------------------------------------
ChangeLog:

* Wed May  3 2023 Fabio Valentini  - 0.5.2-5
- Rebuild for openssl crate >= v0.10.48 (RUSTSEC-2023-{0022,0023,0024})
* Tue Feb  7 2023 Peter Robinson  - 0.5.2-4
- Rebuild for tss-esapi 7.2.0
* Thu Jan 19 2023 Fedora Release Engineering  - 0.5.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-37ae269843' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 37: clevis-pin-tpm2 2023-37ae269843

May 18, 2023
Recent updates for the `tokio`, `h2`, and `openssl` crates addressed some (potential or confirmed) security or soundness issues: - `tokio`: [RUSTSEC-2023-0005](https://rustsec.org/...

Summary

Clevis PIN for unlocking with TPM2 supporting Authorized Policies.

Update Information:

Recent updates for the `tokio`, `h2`, and `openssl` crates addressed some (potential or confirmed) security or soundness issues: - `tokio`: [RUSTSEC-2023-0005](https://rustsec.org/advisories/RUSTSEC-2023-0005.html) - `h2`: [RUSTSEC-2023-0034](https://rustsec.org/advisories/RUSTSEC-2023-0034.html) / [CVE-2023-26964](https://nvd.nist.gov/vuln/detail/CVE-2023-26964) - `openssl`: [RUSTSEC-2023-0022](https://rustsec.org/advisories/RUSTSEC-2023-0022.html), [RUSTSEC-2023-0023](https://rustsec.org/advisories/RUSTSEC-2023-0023.html), [RUSTSEC-2023-0024](https://rustsec.org/advisories/RUSTSEC-2023-0024.html) This update contains rebuilds of all affected applications against the latest versions of these crates, which have addressed all linked issues.

Change Log

* Wed May 3 2023 Fabio Valentini - 0.5.2-5 - Rebuild for openssl crate >= v0.10.48 (RUSTSEC-2023-{0022,0023,0024}) * Tue Feb 7 2023 Peter Robinson - 0.5.2-4 - Rebuild for tss-esapi 7.2.0 * Thu Jan 19 2023 Fedora Release Engineering - 0.5.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild

References

Fedora Update Notification FEDORA-2023-37ae269843 2023-05-18 00:49:56.087782 Name : clevis-pin-tpm2 Product : Fedora 37 Version : 0.5.2 Release : 5.fc37 URL : https://github.com/fedora-iot/clevis-pin-tpm2/ Summary : Clevis PIN for unlocking with TPM2 supporting Authorized Policies Description : Clevis PIN for unlocking with TPM2 supporting Authorized Policies.

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-37ae269843' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : clevis-pin-tpm2
Product : Fedora 37
Version : 0.5.2
Release : 5.fc37
URL : https://github.com/fedora-iot/clevis-pin-tpm2/
Summary : Clevis PIN for unlocking with TPM2 supporting Authorized Policies

Related News

14 Kubernetes and Cloud Security Challenges and How to Solve Them

Linux Kernel Vulnerabilities in Ubuntu Let Hackers Launch DOS Attack & Execute Arbitrary Code

IceFire Ransomware Portends a Broader Shift From Windows to Linux

Citrix Fixes Severe Flaws in Workspace, Virtual Apps and Desktops

News

Advisories

HOWTOs

Features

Linux Container Security Primer
Email Phishing Using Kali Linux
Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy