-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 29 Mar 2025 03:13:08 +0100
Source: fort-validator
Binary: fort-validator fort-validator-dbgsym
Architecture: armel
Version: 1.5.4-1+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: arm Build Daemon (arm-conova-02) <buildd_arm64-arm-conova-02@buildd.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Description:
 fort-validator - RPKI validator and RTR server
Changes:
 fort-validator (1.5.4-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS Team.
   * d/control (Build-Depends): Add rsync for running tests.
   * d/patches/CVE-2024-45234.patch: Add patch to fix CVE-2024-45234.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) an ROA or a Manifest containing a
       signedAttrs encoded in non-canonical form. This bypasses Fort's BER
       decoder, reaching a point in the code that panics when faced with data
       not encoded in DER. Because Fort is an RPKI Relying Party, a panic can
       lead to Route Origin Validation unavailability, which can lead to
       compromised routing.
   * d/patches/CVE-2024-45235.patch: Add patch to fix CVE-2024-45235.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing an
       Authority Key Identifier extension that lacks the keyIdentifier field.
       Fort references this pointer without sanitizing it first. Because Fort
       is an RPKI Relying Party, a crash can lead to Route Origin Validation
       unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-45236.patch: Add patch to fix CVE-2024-45236.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a signed object containing an empty
       signedAttributes field. Fort accesses the set's elements without
       sanitizing it first. Because Fort is an RPKI Relying Party, a crash can
       lead to Route Origin Validation unavailability, which can lead to
       compromised routing.
   * d/patches/CVE-2024-45237.patch: Add patch to fix CVE-2024-45237.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing a Key
       Usage extension composed of more than two bytes of data. Fort writes this
       string into a 2-byte buffer without properly sanitizing its length,
       leading to a buffer overflow.
   * d/patches/CVE-2024-45238.patch: Add patch to fix CVE-2024-45238.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing a bit
       string that doesn't properly decode into a Subject Public Key. OpenSSL
       does not report this problem during parsing, and when compiled with
       OpenSSL libcrypto versions below 3, Fort recklessly dereferences the
       pointer. Because Fort is an RPKI Relying Party, a crash can lead to Route
       Origin Validation unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-45239.patch: Add patch to fix CVE-2024-45239.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) an ROA or a Manifest containing a null
       eContent field. Fort dereferences the pointer without sanitizing it
       first. Because Fort is an RPKI Relying Party, a crash can lead to Route
       Origin Validation unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-48943.patch: Add patch to fix CVE-2024-48943.
     - A malicious RPKI rsync repository can prevent Fort from finishing its
       validation run by drip-feeding its content. This can lead to delayed
       validation and a stale or unavailable Route Origin Validation.
       (thanks to Jochen Sprickerhof for helping backporting the test case)
Checksums-Sha1:
 c90c8a3715d6531195112f0a74c6f8aadf9d0965 599560 fort-validator-dbgsym_1.5.4-1+deb12u1_armel.deb
 976ffab64ac81803aa9e5d7ae09b1e7676333550 7110 fort-validator_1.5.4-1+deb12u1_armel-buildd.buildinfo
 7f4c6eae983c53fb90682cdb34eb68bc69ad88db 172196 fort-validator_1.5.4-1+deb12u1_armel.deb
Checksums-Sha256:
 3ce9c016b73eba7559b0f2bf1c151d48a2c789b8a236174cef1d2fbbca3c1c8f 599560 fort-validator-dbgsym_1.5.4-1+deb12u1_armel.deb
 a288eee64d2f3a0fcff1d45f45ad99f27ffa95cbdfab4d7a61338dbf357d2d1e 7110 fort-validator_1.5.4-1+deb12u1_armel-buildd.buildinfo
 8c53453dae640b7a9b5ba5a15bd1cfcab3b82f1859fb572974e5522d66e0731e 172196 fort-validator_1.5.4-1+deb12u1_armel.deb
Files:
 1a84773606271e4e0aa91709949a06e5 599560 debug optional fort-validator-dbgsym_1.5.4-1+deb12u1_armel.deb
 5e09af7bfae8fdac87c272bee793a9c0 7110 net optional fort-validator_1.5.4-1+deb12u1_armel-buildd.buildinfo
 61c1907f312b841d8008ba573e90752d 172196 net optional fort-validator_1.5.4-1+deb12u1_armel.deb

-----BEGIN PGP SIGNATURE-----
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=wp3z
-----END PGP SIGNATURE-----