-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2021-f706ca6458 2021-06-16 00:38:32.257087 --------------------------------------------------------------------------------

Name : radsecproxy Product : Fedora EPEL 7 Version : 1.9.0 Release : 1.el7 URL : https://radsecproxy.github.io/ Summary : Generic RADIUS proxy with RadSec support Description : radsecproxy is a generic RADIUS proxy that in addition to usual RADIUS UDP transport, also supports TLS (RadSec), as well as RADIUS over TCP and DTLS. The aim is for the proxy to have sufficient features to be flexible, while at the same time to be small, efficient and easy to configure.

-------------------------------------------------------------------------------- Update Information:

radsecproxy 1.9.0 (2021-05-28) ============================== New features ------------ - Accept multiple source* configs for IPv4/v6 - Specify source per server - User configurable cipher-list and ciphersuites - User configurable TLS versions - Config option for DH-file - Add rID and otherName options to certifcateAttributeCheck - Allow multiple matchCertificateAttribute - Option to start dynamic server in blocking mode Misc ---- - Move radsecproxy manpage to section 8 - Log CUI and operator- name if present - Log CN for incomming TLS connections Bug fixes --------- - Fix overlapping log lines - Fix memory leak in logging - Fix dynidsc example scripts input validation (CVE-2021-32642) -------------------------------------------------------------------------------- ChangeLog:

* Mon May 31 2021 Robert Scheck robert@fedoraproject.org 1.9.0-1 - Upgrade to 1.9.0 (#1959532, #1965675) * Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek zbyszek@in.waw.pl - 1.8.2-4 - Rebuilt for updated systemd-rpm-macros See https://pagure.io/fesco/issue/2583. * Wed Jan 27 2021 Fedora Release Engineering releng@fedoraproject.org - 1.8.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1965675 - CVE-2021-32642 radsecproxy: missing input validation in dynamic discovery example scripts https://bugzilla.redhat.com/show_bug.cgi?id=1965675 --------------------------------------------------------------------------------

This update can be installed with the "yum" update programs. Use su -c 'yum update radsecproxy' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html

All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------