stable

rust-routinator-0.14.1-2.fc41

FEDORA-2025-bbabead4d7 created by salimma 2 months ago for Fedora 41

New

  • ASPA support is now always compiled in and available if enable-aspa is set. The aspa Cargo feature has been removed. (#990)
  • If merging mutliple ASPA objects for a single customer ASN results in more than 16,380 provider ASNs, the ASPA is dropped. (Note that ASPA objects with more than 16,380 provider ASNs are already rejected during parsing.) (#996)
  • New archive-stats command that shows some statistics of an RRDP archive. (#982)
  • Re-enabled the use of GZIP compression in HTTP request sent by the RRDP collector. Measures to deal with exploding data have been implemented in rpki-rs#319. (#997)

Bug fixes

  • Fixed an issue with checking the file names in manifests that let to a crash when non-ASCII characters are used. (rpki-rs#320, reported by Haya Schulmann and Niklas Vogel of Goethe University Frankfurt/ATHENE Center and assigned CVE-2025-0638)
  • The validation HTTP endpoints now accept prefixes with non-zero host bits. (#987)
  • Removed duplicate rtr_client_reset_queries in HTTP metrics. (#992 by @sleinen)
  • Improved disk space consumption of the new RRDP archives by re-using empty space when updating an object and padding all objects to a multiple of 256 bytes. (#982)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-bbabead4d7

This update's test gating status has been changed to 'waiting'.

2 months ago

This update's test gating status has been changed to 'ignored'.

2 months ago

This update has been submitted for testing by bodhi.

2 months ago

salimma edited this update.

2 months ago

This update has been pushed to testing.

2 months ago

This update has been submitted for stable by bodhi.

a month ago

This update has been pushed to stable.

a month ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
7 days
Dates
submitted
2 months ago
in testing
2 months ago
in stable
a month ago
modified
2 months ago
approved
a month ago
BZ#2339700 CVE-2025-0638 rust-routinator: Routinator crashes when illegal characters are present in manifest file names [fedora-all]
0
0

Automated Test Results