FEDORA-2017-a73bc7ac5d created by ralph 3 years ago for Fedora 24
stable

Fix validation logic in the base consumer

The base consumer is intended to only derive its validation switch from the on-disk configuration if the child class doesn't override the validate_signatures switch.

There was a bug here where the default value provided in the base class made it appear as if all child consumers had turned off validation, which is incorrect.

This fix turns on signature validation by default while preserving the ability of child consumers to override the on-disk configuration in special cases.

  • Fixes: CVE-2017-1000001
  • Reviewed-by: Patrick Uiterwijk

How to install

sudo dnf upgrade --advisory=FEDORA-2017-a73bc7ac5d

This update has been submitted for testing by ralph.

3 years ago

This update has been pushed to testing.

3 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for stable by ralph.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago

Automated Test Results