Fixes CVE-2022-24884 (Improper Verification of ECDSA Signatures). In previous versions ecdsautils would erroneously accept all-zero signatures as valid.
More information can be found here: https://github.com/freifunk-gluon/ecdsautils/security/advisories/GHSA-qhcg-9ffp-78pw
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2022-111177a5ac
Please login to add feedback.
This update has been submitted for testing by heffer.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
heffer edited this update.
This update has been submitted for stable by bodhi.
This update has been pushed to stable.