LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2012-12973 (trousers)



From:
    	      updates@fedoraproject.org 


To:
    	      package-announce@lists.fedoraproject.org 


Subject:
    	      [SECURITY] Fedora 17 Update: trousers-0.3.9-1.fc17 


Date:
    	      Fri, 07 Sep 2012 11:26:47 +0000


Message-ID:
    	      <20120907112649.8ECFF20A82@bastion01.phx2.fedoraproject.org>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-12973
2012-08-30 00:24:17
--------------------------------------------------------------------------------

Name        : trousers
Product     : Fedora 17
Version     : 0.3.9
Release     : 1.fc17
URL         : http://trousers.sourceforge.net
Summary     : TCG's Software Stack v1.2
Description :
TrouSerS is an implementation of the Trusted Computing Group's Software Stack
(TSS) specification. You can use TrouSerS to write applications that make use
of your TPM hardware. TPM hardware can create, store and use RSA keys
securely (without ever being exposed in memory), verify a platform's software
state using cryptographic hashes and more.

--------------------------------------------------------------------------------
Update Information:

This update closes a small security issue where a remote user could crash tscd if it were enabled
for networking. This update also has improved init scripts which should make it load quicker.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug 27 2012 Steve Grubb <sgrubb@redhat.com> 0.3.9-1
- New upstream bug fix release
- Update init scripts to not try to load modules
- bz #781666 - CVE-2012-0698 DoS vulnerability in tcsd
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #781666 - CVE-2012-0698 DoS vulnerability in tcsd [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=781666
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update trousers' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds