UbuntuUpdates.org

Package "fort-validator"

Name: fort-validator

Description:

RPKI validator and RTR server
Latest version: 1.5.3-1ubuntu0.1
Release: jammy (22.04)
Level: security
Repository: universe
Homepage: https://nicmx.github.io/FORT-validator/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "fort-validator"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "fort-validator" in Jammy

Repository Area Version
base universe 1.5.3-1build1
updates universe 1.5.3-1ubuntu0.1

Changelog

Version: 1.5.3-1ubuntu0.1 2025-10-08 17:07:03 UTC

  fort-validator (1.5.3-1ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: denial of service
    - debian/patches/CVE-2024-45234.patch: Prevent crash on BER-encoded
    signedAttrs in src/object/certificate.c.
    - debian/patches/CVE-2024-45235.patch: Prevent crash on missing
    Authority Key Identifier in src/extension.c.
    - debian/patches/CVE-2024-45236.patch: Prevent crash on missing
    signedAttrs in src/asn1/signed_data.c.
    - debian/patches/CVE-2024-45238.patch: Prevent crash on malformed
    subjectPublicKey in src/object/certificate.c.
    - debian/patches/CVE-2024-45239.patch: Prevent crash on missing
    eContent in src/asn1/decode.c.
    - debian/patches/CVE-2024-48943.patch: Introduce an rsync transfer
    timeout.
    - CVE-2024-45234
    - CVE-2024-45235
    - CVE-2024-45236
    - CVE-2024-45238
    - CVE-2024-45239
    - CVE-2024-48943
  * SECURITY UPDATE: buffer overflow
    - debian/patches/CVE-2024-45237.patch: Prevent buffer overflow on
    malformed Key Usage in src/object/certificate.c.
    - CVE-2024-45237

 -- Edwin Jiang <email address hidden> Wed, 01 Oct 2025 20:30:26 +0000
CVE-2024-45234 An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a
CVE-2024-45235 An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a
CVE-2024-45236 An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a
CVE-2024-45238 An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a
CVE-2024-45239 An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a
CVE-2024-45237 An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a


About   -   Send Feedback to @ubuntu_updates