--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-d3f8193065
2021-06-09 03:04:53.607341
--------------------------------------------------------------------------------
Name : radsecproxy
Product : Fedora 34
Version : 1.9.0
Release : 1.fc34
URL :
https://radsecproxy.github.io/
Summary : Generic RADIUS proxy with RadSec support
Description :
radsecproxy is a generic RADIUS proxy that in addition to usual RADIUS UDP
transport, also supports TLS (RadSec), as well as RADIUS over TCP and DTLS.
The aim is for the proxy to have sufficient features to be flexible, while
at the same time to be small, efficient and easy to configure.
--------------------------------------------------------------------------------
Update Information:
radsecproxy 1.9.0 (2021-05-28) ============================== New features
------------ - Accept multiple source* configs for IPv4/v6 - Specify source
per server - User configurable cipher-list and ciphersuites - User
configurable TLS versions - Config option for DH-file - Add rID and
otherName options to certifcateAttributeCheck - Allow multiple
matchCertificateAttribute - Option to start dynamic server in blocking mode
Misc ---- - Move radsecproxy manpage to section 8 - Log CUI and operator-
name if present - Log CN for incomming TLS connections Bug fixes ---------
- Fix overlapping log lines - Fix memory leak in logging - Fix dynidsc
example scripts input validation (CVE-2021-32642)
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 31 2021 Robert Scheck <robert(a)fedoraproject.org> 1.9.0-1
- Upgrade to 1.9.0 (#1959532, #1965675)
* Tue Mar 2 2021 Zbigniew J��drzejewski-Szmek <zbyszek(a)in.waw.pl> - 1.8.2-4
- Rebuilt for updated systemd-rpm-macros
See
https://pagure.io/fesco/issue/2583.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1965675 - CVE-2021-32642 radsecproxy: missing input validation in dynamic
discovery example scripts
https://bugzilla.redhat.com/show_bug.cgi?id=1965675
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-d3f8193065' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------