FEDORA-EPEL-2017-6ee140a6d3 created by ralph 4 years ago for Fedora EPEL 7
stable

Fix validation logic in the base consumer

The base consumer is intended to only derive its validation switch from the on-disk configuration if the child class doesn't override the validate_signatures switch.

There was a bug here where the default value provided in the base class made it appear as if all child consumers had turned off validation, which is incorrect.

This fix turns on signature validation by default while preserving the ability of child consumers to override the on-disk configuration in special cases.

  • Fixes: CVE-2017-1000001
  • Reviewed-by: Patrick Uiterwijk

This update has been submitted for testing by ralph.

4 years ago

This update has been pushed to testing.

4 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by ralph.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago

Automated Test Results