--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-a4be4c93e4
2021-06-09 02:43:49.357280
--------------------------------------------------------------------------------
Name : radsecproxy
Product : Fedora 33
Version : 1.9.0
Release : 1.fc33
URL :
https://radsecproxy.github.io/
Summary : Generic RADIUS proxy with RadSec support
Description :
radsecproxy is a generic RADIUS proxy that in addition to usual RADIUS UDP
transport, also supports TLS (RadSec), as well as RADIUS over TCP and DTLS.
The aim is for the proxy to have sufficient features to be flexible, while
at the same time to be small, efficient and easy to configure.
--------------------------------------------------------------------------------
Update Information:
radsecproxy 1.9.0 (2021-05-28) ============================== New features
------------ - Accept multiple source* configs for IPv4/v6 - Specify source
per server - User configurable cipher-list and ciphersuites - User
configurable TLS versions - Config option for DH-file - Add rID and
otherName options to certifcateAttributeCheck - Allow multiple
matchCertificateAttribute - Option to start dynamic server in blocking mode
Misc ---- - Move radsecproxy manpage to section 8 - Log CUI and operator-
name if present - Log CN for incomming TLS connections Bug fixes ---------
- Fix overlapping log lines - Fix memory leak in logging - Fix dynidsc
example scripts input validation (CVE-2021-32642)
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 31 2021 Robert Scheck <robert(a)fedoraproject.org> 1.9.0-1
- Upgrade to 1.9.0 (#1959532, #1965675)
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1.8.2-4
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
* Wed Jan 27 2021 Fedora Release Engineering <releng(a)fedoraproject.org> - 1.8.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Sat Oct 10 2020 Robert Scheck <robert(a)fedoraproject.org> 1.8.2-2
- Build against OpenSSL 1.1 on RHEL 7 (for TLSv1.3 support)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1965675 - CVE-2021-32642 radsecproxy: missing input validation in dynamic
discovery example scripts
https://bugzilla.redhat.com/show_bug.cgi?id=1965675
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-a4be4c93e4' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------