[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SUA 183-1] Updated pagekite package

Debian Stable Updates Announcement SUA 183-1     https://www.debian.org
debian-release@lists.debian.org                       Sunil Mohan Adapa
June 13th, 2020

Package              : pagekite
Version              : [buster]
Importance           : medium

PageKite is a system for running publicly visible servers (generally
web servers) on machines without a direct connection to the Internet.

In order to simplify setup for users, the pagekite package includes
copies of the root and intermediate SSL certificates used by various
Certificate Authorities to sign SSL certificates related to the
PageKite service.

Recently, one of the included certificates - the "AddTrust External
Root" certificate - expired, causing problems for PageKite installs
attempting to verify connections to the service using that certificate.

It should be possible to verify affected connections using other
"chains" of intermediate and root certificates. However, the inclusion
of the expired certificate can lead to it being used in preference,
resulting in verification failures.

This update moves PageKite to use the Debian-provided "ca-certificates"
package, rather than the internal embedded certificates, allowing
connections to be verified successfully.

If you use PageKite, we recommend that you install this update.

Upgrade Instructions

You can get the updated packages by adding the stable-updates archive
for your distribution to your /etc/apt/sources.list:

 deb http://ftp.debian.org/debian buster-updates main
 deb-src http://ftp.debian.org/debian buster-updates main

You can also use any of the Debian archive mirrors.  See
https://www.debian.org/mirrors/list for the full list of mirrors.

For further information about stable-updates, please refer to

If you encounter any issues, please don't hesitate to get in touch with
the Debian Release Team at debian-release@lists.debian.org

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: