-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 29 Mar 2025 03:13:08 +0100
Source: fort-validator
Binary: fort-validator fort-validator-dbgsym
Architecture: s390x
Version: 1.5.4-1+deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: s390x Build Daemon (zani) <buildd_s390x-zani@buildd.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Description:
 fort-validator - RPKI validator and RTR server
Changes:
 fort-validator (1.5.4-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS Team.
   * d/control (Build-Depends): Add rsync for running tests.
   * d/patches/CVE-2024-45234.patch: Add patch to fix CVE-2024-45234.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) an ROA or a Manifest containing a
       signedAttrs encoded in non-canonical form. This bypasses Fort's BER
       decoder, reaching a point in the code that panics when faced with data
       not encoded in DER. Because Fort is an RPKI Relying Party, a panic can
       lead to Route Origin Validation unavailability, which can lead to
       compromised routing.
   * d/patches/CVE-2024-45235.patch: Add patch to fix CVE-2024-45235.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing an
       Authority Key Identifier extension that lacks the keyIdentifier field.
       Fort references this pointer without sanitizing it first. Because Fort
       is an RPKI Relying Party, a crash can lead to Route Origin Validation
       unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-45236.patch: Add patch to fix CVE-2024-45236.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a signed object containing an empty
       signedAttributes field. Fort accesses the set's elements without
       sanitizing it first. Because Fort is an RPKI Relying Party, a crash can
       lead to Route Origin Validation unavailability, which can lead to
       compromised routing.
   * d/patches/CVE-2024-45237.patch: Add patch to fix CVE-2024-45237.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing a Key
       Usage extension composed of more than two bytes of data. Fort writes this
       string into a 2-byte buffer without properly sanitizing its length,
       leading to a buffer overflow.
   * d/patches/CVE-2024-45238.patch: Add patch to fix CVE-2024-45238.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) a resource certificate containing a bit
       string that doesn't properly decode into a Subject Public Key. OpenSSL
       does not report this problem during parsing, and when compiled with
       OpenSSL libcrypto versions below 3, Fort recklessly dereferences the
       pointer. Because Fort is an RPKI Relying Party, a crash can lead to Route
       Origin Validation unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-45239.patch: Add patch to fix CVE-2024-45239.
     - A malicious RPKI repository that descends from a (trusted) Trust Anchor
       can serve (via rsync or RRDP) an ROA or a Manifest containing a null
       eContent field. Fort dereferences the pointer without sanitizing it
       first. Because Fort is an RPKI Relying Party, a crash can lead to Route
       Origin Validation unavailability, which can lead to compromised routing.
   * d/patches/CVE-2024-48943.patch: Add patch to fix CVE-2024-48943.
     - A malicious RPKI rsync repository can prevent Fort from finishing its
       validation run by drip-feeding its content. This can lead to delayed
       validation and a stale or unavailable Route Origin Validation.
       (thanks to Jochen Sprickerhof for helping backporting the test case)
Checksums-Sha1:
 e0d89f4d17c8253d81d83c6c714b0274cd392617 617312 fort-validator-dbgsym_1.5.4-1+deb12u1_s390x.deb
 f6ea5dbcc66a03661f81923cf0119c284241eaa2 7156 fort-validator_1.5.4-1+deb12u1_s390x-buildd.buildinfo
 3da01344ba9a6e3f7c1e382b9582a2f8be04027c 189692 fort-validator_1.5.4-1+deb12u1_s390x.deb
Checksums-Sha256:
 d8270cd14be0a8d590e450476a6b44cba209677e00da2722137edfdfc89b677b 617312 fort-validator-dbgsym_1.5.4-1+deb12u1_s390x.deb
 a8ee173342320eba6f0b9793b9d1ca87deeccc9ec4fe5c1fb82545c279fbbe32 7156 fort-validator_1.5.4-1+deb12u1_s390x-buildd.buildinfo
 27250da02865cd6370ba0667f9fad0fe99668d5c97edb4a366078bf0fd86a6ec 189692 fort-validator_1.5.4-1+deb12u1_s390x.deb
Files:
 a0c4a276560bbe8d50dbe11c0d3559c3 617312 debug optional fort-validator-dbgsym_1.5.4-1+deb12u1_s390x.deb
 57d0d93d3f03b6f2511eda6af7296282 7156 net optional fort-validator_1.5.4-1+deb12u1_s390x-buildd.buildinfo
 2cb5c332020b50f397956c5d0958ccc6 189692 net optional fort-validator_1.5.4-1+deb12u1_s390x.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEZTC4/c20pi1/n7UBUhVQ83ojQ7QFAmhpU1IACgkQUhVQ83oj
Q7SjEBAAuDEp1uu7axvrcr5DUNrWuA0FmVuHgQiZxGSosf/YhHDJXizx9kXVE3lH
/6wNC2x0DIaEEJTO16gIeAz6dz4q7vQ3WZpUxvNol1DkU/HsjwUDVKLUKitq+LQK
I8xu5o7r9yjhQHAnnmeFWGOcVLcn9xuB3xN917z8Y7fjh1Fgsb827vxx/AWz4h6+
nGJLIUEoQTnGU/vxgckK2wAbAArdhhbuXGgkW9H0CVupJPViV2NXeInirMedpVJW
IrSOiB+7inxqFrnkc0/kBpTn+scEAM8oHyIMYTspeebIGNW95WlbQ/YSrCOjnKIU
7hooeIGCAfPxlQoJpqdzlrnL3vrIJDT01Xv0htuVWTlC4WqAeyrG5ehrXwZTGqgh
FaefCqMiSV1JC4woyWskDUGMKc4bpSnh0afOQITPr3W8E5v4/jaOk/YSD3Dpw8Ma
imCecqZxjqyBZhJ/v7Uujv0S3QkBh2ibbBfIgnaqot9KeBb08fmLwjaTTS0OA5wY
dCKctZkYCcDAGxYUo3IW8+IrjrefPi2ukDUaklgIobuxx8hkm4tAm5pc0GgHcHZw
nbd4VDbGppKLSWRJLZCLuLX3SBxuShF+O5fUaysxhUZm/YzbM46ta2LU6s+vFvb2
KC0yB/MQrrGb/ZvskQTUEAYr/AoLzN28CD0gpkdhOIQXzbOUSNc=
=j2s+
-----END PGP SIGNATURE-----