Re: multiple RPKI-related vulnerabilities in stable
Hi Marco,
On Sun, Nov 28, 2021 at 11:57:09PM +0100, SEEWEB - Marco d'Itri wrote:
> https://rpki.exposed/ lists a long number of vulnerabilities affecting
Ironically this website is unreachable since at least yesterday :-)
> It is not really practical to extract and backport all these patches, so
Let's fix these via bullseye-security, version numbers would be:
rpki-client 7.5-1~deb11u1
fort-validator 1.5.3-1~deb11u1
cfrpki 1.4.2-1~deb11u1
Note that the dak installations on security.debian.org and ftp.debian.org
don't share tarballs, so these need to be rebuild with -sa to include the
orig tarballs in the changes file.
Cheers,
Moritz
Reply to: