Fedora 17 Update: pki-core-9.0.26-1.fc17

updates at fedoraproject.org updates at fedoraproject.org
Thu Jun 6 01:27:21 UTC 2013 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-9278
2013-05-26 02:09:02
--------------------------------------------------------------------------------

Name        : pki-core
Product     : Fedora 17
Version     : 9.0.26
Release     : 1.fc17
URL         : http://pki.fedoraproject.org/
Summary     : Certificate System - PKI Core Components
Description :
==================================
||  ABOUT "CERTIFICATE SYSTEM"  ||
==================================

Certificate System (CS) is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.

PKI Core contains fundamental packages required by Certificate System,
and consists of the following components:

  * pki-setup
  * pki-symkey
  * pki-native-tools
  * pki-util
  * pki-util-javadoc
  * pki-java-tools
  * pki-java-tools-javadoc
  * pki-common
  * pki-common-javadoc
  * pki-selinux
  * pki-ca
  * pki-silent

which comprise the following PKI subsystems:

  * Certificate Authority (CA)

For deployment purposes, Certificate System requires ONE AND ONLY ONE
of the following "Mutually-Exclusive" PKI Theme packages:

  * ipa-pki-theme    (IPA deployments)
  * dogtag-pki-theme (Dogtag Certificate System deployments)
  * redhat-pki-theme (Red Hat Certificate System deployments)

--------------------------------------------------------------------------------
Update Information:

Bugzilla Bug #912554 - Random certificate serial numbers
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 24 2013 Andrew Wnuk <awnuk at redhat.com> 9.0.26-1
- Bugzilla Bug #912554 - [RFE] Random certificate serial numbers
- Bugzilla Bug #958310 - [RFE] Randomized certificate validity
- Bugzilla Bug #919556 - [RFE] Option to include nextUpdate as an offset
                               to thisUpdate
- Bugzilla Bug #839426 - [RFE] ECC CRL support for OCSP
- Trac Ticket  #362    - [RFE] CMC ECC
- Bugzilla Bug #810967 - [RFE] ECC support for pkisilent
- Bugzilla Bug #861467 - [RFE] AD authentication plug-in update
- Bugzilla Bug #891985 - Extended default CA validity
- Bugzilla Bug #951501 - Corrected JavaScript issue with big numbers
- Bugzilla Bug #955784 - Corrected JavaScript inability to handle big numbers
- Bugzilla Bug #913313 - CA system certificates with random serial numbers
- Bugzilla Bug #920816 - Cloning of CA with random serial number enabled
- Bugzilla Bug #922264 - Allow for safe clone restart during configuration change
- Bugzilla Bug #922121 - Cloning improvement for random certificate serial numbers
* Tue Dec 11 2012 Andrew Wnuk<awnuk at redhat.com> 9.0.25-1
- Bugzilla Bug #861467 - Directory authenticated user certificate enrollments
  fail when anonymous access disabled.
- Bugzilla Bug #884829 - Multiple cross-site scripting flaws
* Tue Oct 30 2012 Andrew Wnuk <awnuk at redhat.com> 9.0.24-1
- New official build
- Used GetStatus servlet to provide startup status - (alee)
- Audit Cert Renewal - Bugzilla Bug #843979 (mharmsen)
- time based searches - Bugzilla Bug #854420 (awnuk)
- TMS ECC infrastructure - ticket #304 (cfu)
* Fri Sep  7 2012 Matthew Harmsen <mharmsen at redhat.com> 9.0.23-1
- TRAC Ticket #301 - Need to modify init scripts to verify needed symlinks
  in an instance (support for non-default instance names) (mharmsen)
- Bugzilla Bug #852855 - rhcs81 - remove unexpected anonymous binds to
  internal db in cert status thread. (jmagne)
* Wed Aug 22 2012 Ade Lee <alee at redhat.com> 9.0.22-1
- Reverted selinux changes that broke f16 selinux policy.
- Reapplied those changes as a modified patch to f17 build.
* Fri Jul 20 2012 Ade Lee <alee at redhat.com> 9.0.21-1
- Bugzilla Bug #841996 - latest selinux policy fix breaks dogtag
* Mon May  7 2012 Andrew Wnuk <awnuk at redhat.com> 9.0.20-1
- New official build
* Mon May  7 2012 Ade Lee <alee at redhat.com> 9.0.19-4
- Bugzilla Bug #819111 - non-existent container breaks replication
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update pki-core' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list