Fedora 20 Update: crypto-utils-2.4.1-48.fc20
updates at fedoraproject.org
updates at fedoraproject.org
Wed Feb 5 03:38:20 UTC 2014
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-1362
2014-01-23 09:48:31
--------------------------------------------------------------------------------
Name : crypto-utils
Product : Fedora 20
Version : 2.4.1
Release : 48.fc20
URL : None
Summary : SSL certificate and key management utilities
Description :
This package provides tools for managing and generating
SSL certificates and keys.
--------------------------------------------------------------------------------
Update Information:
This update fixes several issues in genkey:
* SHA1 is used as the default hash for newly created certificates (and certificate requests).
* The default key size is updated to 2048 bits.
* Special characters were not escaped properly when executing keyutil.
* Errors when executing keyutil would result in a crash rather than an error message.
The certwatch man page has been updated.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 27 2014 Joe Orton <jorton at redhat.com> - 2.4.1-48
- update certwatch man page (#618421)
* Mon Jan 27 2014 Joe Orton <jorton at redhat.com> - 2.4.1-47
- genkey: escape passwords properly (#980859)
- genkey: escape commas in subject (#803305)
- keyutil: fix crashes when printing errors (#1045354)
- drop requirement on mod_ssl/mod_nss again (#1057858)
* Wed Jan 22 2014 Joe Orton <jorton at redhat.com> - 2.4.1-46
- genkey: further tweaks to wording around key sizes
* Wed Jan 22 2014 Joe Orton <jorton at redhat.com> - 2.4.1-45
- keyutil: use SHA1 as default hash in created certs (#921117)
- genkey: default to 2048 bit keysize (#986788)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #921117 - genkey fails to generate a certificate because the signature is not secure
https://bugzilla.redhat.com/show_bug.cgi?id=921117
[ 2 ] Bug #986788 - genkey default should be updated
https://bugzilla.redhat.com/show_bug.cgi?id=986788
[ 3 ] Bug #618421 - Undocumented and inaccurate certwatch options
https://bugzilla.redhat.com/show_bug.cgi?id=618421
[ 4 ] Bug #803305 - genkey fails due to segfault in keyutil
https://bugzilla.redhat.com/show_bug.cgi?id=803305
[ 5 ] Bug #980859 - can't handle passwords with &
https://bugzilla.redhat.com/show_bug.cgi?id=980859
[ 6 ] Bug #1057858 - DO NOT require mod_nss
https://bugzilla.redhat.com/show_bug.cgi?id=1057858
[ 7 ] Bug #1045354 - [abrt] crypto-utils: _IO_vfprintf_internal(): keyutil killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1045354
[ 8 ] Bug #988609 - Add a missing requirement on crontabs for the cron job to the spec file
https://bugzilla.redhat.com/show_bug.cgi?id=988609
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update crypto-utils' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list