Fedora 21 Update: oath-toolkit-2.4.1-9.fc21

updates at fedoraproject.org updates at fedoraproject.org
Mon Feb 9 05:27:12 UTC 2015


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-1484
2015-01-31 21:09:54
--------------------------------------------------------------------------------

Name        : oath-toolkit
Product     : Fedora 21
Version     : 2.4.1
Release     : 9.fc21
URL         : http://www.nongnu.org/oath-toolkit/
Summary     : One-time password components
Description :
The OATH Toolkit provide components for building one-time password
authentication systems. It contains shared libraries, command line tools and a
PAM module. Supported technologies include the event-based HOTP algorithm
(RFC4226) and the time-based TOTP algorithm (RFC6238). OATH stands for Open
AuTHentication, which is the organization that specify the algorithms. For
managing secret key files, the Portable Symmetric Key Container (PSKC) format
described in RFC6030 is supported.

--------------------------------------------------------------------------------
Update Information:

Fixed invalid reads in libpskc due to references to old (freed) xmlDoc
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jan 30 2015 Jaroslav Škarvada <jskarvad at redhat.com> - 2.4.1-9
- Fixed invalid reads in libpskc due to references to old (freed) xmlDoc
  (by retain-original-xmldoc patch), patch provided by David Woodhouse
  Resolves: rhbz#1129491
* Tue Nov 11 2014 Jaroslav Škarvada <jskarvad at redhat.com> - 2.4.1-8
- Removed RHEL conditionals (not needed any more)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1129491 - memory corruption after pskc_build_xml()
        https://bugzilla.redhat.com/show_bug.cgi?id=1129491
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update oath-toolkit' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list