| |||||||||||||||||||
Fedora alert FEDORA-2012-20220 (pki-core)
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2012-20220 2012-12-12 04:14:41 -------------------------------------------------------------------------------- Name : pki-core Product : Fedora 17 Version : 9.0.25 Release : 1.fc17 URL : http://pki.fedoraproject.org/ Summary : Certificate System - PKI Core Components Description : ================================== || ABOUT "CERTIFICATE SYSTEM" || ================================== Certificate System (CS) is an enterprise software system designed to manage enterprise Public Key Infrastructure (PKI) deployments. PKI Core contains fundamental packages required by Certificate System, and consists of the following components: * pki-setup * pki-symkey * pki-native-tools * pki-util * pki-util-javadoc * pki-java-tools * pki-java-tools-javadoc * pki-common * pki-common-javadoc * pki-selinux * pki-ca * pki-silent which comprise the following PKI subsystems: * Certificate Authority (CA) For deployment purposes, Certificate System requires ONE AND ONLY ONE of the following "Mutually-Exclusive" PKI Theme packages: * ipa-pki-theme (IPA deployments) * dogtag-pki-theme (Dogtag Certificate System deployments) * redhat-pki-theme (Red Hat Certificate System deployments) -------------------------------------------------------------------------------- Update Information: Bugzilla Bug #884829 - Multiple cross-site scripting flaws -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 11 2012 Andrew Wnuk<awnuk@redhat.com> 9.0.25-1 - Bugzilla Bug #861467 - Directory authenticated user certificate enrollments fail when anonymous access disabled. - Bugzilla Bug #884829 - Multiple cross-site scripting flaws * Tue Oct 30 2012 Andrew Wnuk <awnuk@redhat.com> 9.0.24-1 - New official build - Used GetStatus servlet to provide startup status - (alee) - Audit Cert Renewal - Bugzilla Bug #843979 (mharmsen) - time based searches - Bugzilla Bug #854420 (awnuk) - TMS ECC infrastructure - ticket #304 (cfu) * Fri Sep 7 2012 Matthew Harmsen <mharmsen@redhat.com> 9.0.23-1 - TRAC Ticket #301 - Need to modify init scripts to verify needed symlinks in an instance (support for non-default instance names) (mharmsen) - Bugzilla Bug #852855 - rhcs81 - remove unexpected anonymous binds to internal db in cert status thread. (jmagne) * Wed Aug 22 2012 Ade Lee <alee@redhat.com> 9.0.22-1 - Reverted selinux changes that broke f16 selinux policy. - Reapplied those changes as a modified patch to f17 build. * Fri Jul 20 2012 Ade Lee <alee@redhat.com> 9.0.21-1 - Bugzilla Bug #841996 - latest selinux policy fix breaks dogtag * Mon May 7 2012 Andrew Wnuk <awnuk@redhat.com> 9.0.20-1 - New official build * Mon May 7 2012 Ade Lee <alee@redhat.com> 9.0.19-4 - Bugzilla Bug #819111 - non-existent container breaks replication -------------------------------------------------------------------------------- References: [ 1 ] Bug #884829 - CVE-2012-4543 Certificate System: Multiple cross-site scripting flaws by displaying CRL or processing profile [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=884829 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update pki-core' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-... (Log in to post comments)
|
|||||||||||||||||||