--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-2cce72d1ce
2018-09-23 19:13:15.937585
--------------------------------------------------------------------------------
Name : roca-detect
Product : Fedora 27
Version : 1.2.12
Release : 4.fc27
URL :
https://crocs.fi.muni.cz/public/papers/rsa_ccs17
Summary : Key fingerprinting tools for CVE-2017-15361
Description :
This tool is related to the ACM CCS 2017 conference paper #124 Return of the
Coppersmith���s Attack: Practical Factorization of Widely Used RSA
Moduli.
https://crocs.fi.muni.cz/public/papers/rsa_ccs17
Install this to test public RSA keys for the presence of the vulnerability
described by CVE-2017-15361.
--------------------------------------------------------------------------------
Update Information:
This is a somewhat belated new package that checks RSA keys for the known
vulnerability described in CVE-2017-15361. RSA key generators *should* be
checking for this automatically by now, but this lets you make sure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1503915 - Review Request: roca-detect - test RSA public keys for ROCA
vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1503915
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-2cce72d1ce' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------