-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 29 Mar 2025 03:13:08 +0100
Source: fort-validator
Binary: fort-validator fort-validator-dbgsym
Architecture: armhf
Version: 1.5.4-1+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: arm Build Daemon (arm-ubc-05) <buildd_arm64-arm-ubc-05@buildd.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Description:
 fort-validator - RPKI validator and RTR server
Changes:
 fort-validator (1.5.4-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS Team.
   * d/control (Build-Depends): Add rsync for running tests.
   * d/patches/CVE-2024-45234.patch: Add patch to fix CVE-2024-45234.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) an ROA or a Manifest containing a
       signedAttrs encoded in non-canonical form. This bypasses Fort's BER
       decoder, reaching a point in the code that panics when faced with data
       not encoded in DER. Because Fort is an RPKI Relying Party, a panic can
       lead to Route Origin Validation unavailability, which can lead to
       compromised routing.
   * d/patches/CVE-2024-45235.patch: Add patch to fix CVE-2024-45235.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing an
       Authority Key Identifier extension that lacks the keyIdentifier field.
       Fort references this pointer without sanitizing it first. Because Fort
       is an RPKI Relying Party, a crash can lead to Route Origin Validation
       unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-45236.patch: Add patch to fix CVE-2024-45236.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a signed object containing an empty
       signedAttributes field. Fort accesses the set's elements without
       sanitizing it first. Because Fort is an RPKI Relying Party, a crash can
       lead to Route Origin Validation unavailability, which can lead to
       compromised routing.
   * d/patches/CVE-2024-45237.patch: Add patch to fix CVE-2024-45237.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing a Key
       Usage extension composed of more than two bytes of data. Fort writes this
       string into a 2-byte buffer without properly sanitizing its length,
       leading to a buffer overflow.
   * d/patches/CVE-2024-45238.patch: Add patch to fix CVE-2024-45238.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing a bit
       string that doesn't properly decode into a Subject Public Key. OpenSSL
       does not report this problem during parsing, and when compiled with
       OpenSSL libcrypto versions below 3, Fort recklessly dereferences the
       pointer. Because Fort is an RPKI Relying Party, a crash can lead to Route
       Origin Validation unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-45239.patch: Add patch to fix CVE-2024-45239.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) an ROA or a Manifest containing a null
       eContent field. Fort dereferences the pointer without sanitizing it
       first. Because Fort is an RPKI Relying Party, a crash can lead to Route
       Origin Validation unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-48943.patch: Add patch to fix CVE-2024-48943.
     - A malicious RPKI rsync repository can prevent Fort from finishing its
       validation run by drip-feeding its content. This can lead to delayed
       validation and a stale or unavailable Route Origin Validation.
       (thanks to Jochen Sprickerhof for helping backporting the test case)
Checksums-Sha1:
 bfc9982242b857be423074c976a4b06aad91c01a 609984 fort-validator-dbgsym_1.5.4-1+deb12u1_armhf.deb
 d4dc4d25f013d20e505848860e20e427eb3371d1 7112 fort-validator_1.5.4-1+deb12u1_armhf-buildd.buildinfo
 fb00965205c2c8bf12c38033e2c36e8184b8be2e 174084 fort-validator_1.5.4-1+deb12u1_armhf.deb
Checksums-Sha256:
 81d4c8a184da08957043736db05d3024448ccfbf02e28b3ecf226718871073dd 609984 fort-validator-dbgsym_1.5.4-1+deb12u1_armhf.deb
 095faa3efaefcc8ed15cd8510bc3d1c3f95d46e1f1c5e697ed2e7aa7ece0a2c0 7112 fort-validator_1.5.4-1+deb12u1_armhf-buildd.buildinfo
 46d9cfaed004ca9a68cf231943684db5e6d073ccb5044ad3cf91788a14213b16 174084 fort-validator_1.5.4-1+deb12u1_armhf.deb
Files:
 4be0be5bffc304798b635d675eb72275 609984 debug optional fort-validator-dbgsym_1.5.4-1+deb12u1_armhf.deb
 42d7edfbc9ad8b8713493a6346d8fce9 7112 net optional fort-validator_1.5.4-1+deb12u1_armhf-buildd.buildinfo
 14125434d9ca5375edb4cec6824ba732 174084 net optional fort-validator_1.5.4-1+deb12u1_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=7zRQ
-----END PGP SIGNATURE-----