Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -7 articles for you...
89
security advisorycriticalFedoraFedora 34: 2022-f9ace23a78 Critical: Keylime Update for Trusted Boot
* Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-f9ace23a78 2022-05-13 01:42:38.183652 --------------------------------------------------------------------------------Name : keylime Product : Fedora 34 Version : 6.4.0 Release : 1.fc34 URL : https://github.com/keylime/keylime Summary : Open source TPM software for Bootstrapping and Maintaining Trust Description : Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. --------------------------------------------------------------------------------Update Information: * Updating for Keylime release v6.4.0 * Fixes CVE-2022-1053 --------------------------------------------------------------------------------ChangeLog: * Wed May 4 2022 Sergio Correia - 6.4.0-1 - Updating for Keylime release v6.4.0 --------------------------------------------------------------------------------References: [ 1 ] Bug #2065024 - CVE-2022-1053 keylime: Tenant and Verifier might not use the same registrar data https://bugzilla.redhat.com/show_bug.cgi?id=2065024 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-f9ace23a78' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
May 12, 2022
•Critical
Fedora
89
security advisoryfedoramoderate threatFedora 21: 2015-4711 Moderate: Ca-Certificates Legacy Trust Update
This is an update to the set of CA certificates released with NSS version 3.18 However, the package modifies the CA list to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla, and if you accept any compatibility issues it may cause, an administrator may configure the system by exe [More...]. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-4711 2015-03-26 16:50:15 -------------------------------------------------------------------------------- Name : ca-certificates Product : Fedora 21 Version : 2015.2.3 Release : 1.0.fc21 URL : https://fedoraproject.org/wiki/CA-Certificates Summary : The Mozilla CA root certificate bundle Description : This package contains the set of CA certificates chosen by the Mozilla Foundation for use with the Internet PKI. -------------------------------------------------------------------------------- Update Information: This is an update to the set of CA certificates released with NSS version 3.18 However, the package modifies the CA list to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla, and if you accept any compatibility issues it may cause, an administrator may configure the system by executing the "ca-legacy disable" command. This update corrects the Fedora legacy classification of four root CA certificates, which had trust added or removed in the upstream 2.1 and 2.2 releases. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Kai Engert - 2015.2.3-1.0 - Update to CKBI 2.3 from NSS 3.18 with legacy modifications - Fixed a mistake in the legacy handling of the upstream 2.2 release: Removed two AOL certificates from the legacy group, because upstream didn't removethem as part of phasing out 1024-bit certificates, which means it isn't necessary to keep them. - Fixed a mistake in the legacy handling of the upstream 2.1 release: Moved two NetLock certificates into the legacy group. * Tue Dec 16 2014 Kai Engert - 2014.2.2-1.0 - Update to CKBI 2.2 from NSS 3.17.3 with legacy modifications - Update project URL - Cleanup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1205305 - Update to version 2.3 as released with NSS 3.18 https://bugzilla.redhat.com/show_bug.cgi?id=1205305 [ 2 ] Bug #1205302 - Fix the legacy CA inclusions of upstream 2.1 and 2.2 https://bugzilla.redhat.com/show_bug.cgi?id=1205302 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update ca-certificates' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Apr 13, 2015
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!