Fedora 39: FEDORA-2023-7d80ef0516 Urgent: NATS Authentication Vulnerability
fedora
November 3, 2023
Contains updates to address CVE-2022-{28357,41717} and also NATS: 2023-01 nats- server: Adding accounts for just the system account adds auth bypass
Summary
JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem.
Update Information:
Contains updates to address CVE-2022-{28357,41717} and also NATS: 2023-01 nats- server: Adding accounts for just the system account adds auth bypass
Topics Covered
Change Log
* Wed Sep 20 2023 Mark E. Fuller
References
Fedora Update Notification
FEDORA-2023-6b89bc0305
2023-11-03 18:20:20.950604
Name : golang-github-nats-io-jwt-2
Product : Fedora 39
Version : 2.5.2
Release : 1.fc39
URL : https://github.com/nats-io/jwt
Summary : JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem
Description :
JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem.
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-6b89bc0305' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: golang-github-nats-io-jwt-2
Product: Fedora 39
Version: 2.5.2
Release: 1.fc39
Summary: JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!