[SECURITY] Fedora 17 Update: trousers-0.3.9-1.fc17

updates at fedoraproject.org updates at fedoraproject.org
Fri Sep 7 11:26:47 UTC 2012 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-12973
2012-08-30 00:24:17
--------------------------------------------------------------------------------

Name        : trousers
Product     : Fedora 17
Version     : 0.3.9
Release     : 1.fc17
URL         : http://trousers.sourceforge.net
Summary     : TCG's Software Stack v1.2
Description :
TrouSerS is an implementation of the Trusted Computing Group's Software Stack
(TSS) specification. You can use TrouSerS to write applications that make use
of your TPM hardware. TPM hardware can create, store and use RSA keys
securely (without ever being exposed in memory), verify a platform's software
state using cryptographic hashes and more.

--------------------------------------------------------------------------------
Update Information:

This update closes a small security issue where a remote user could crash tscd if it were enabled for networking. This update also has improved init scripts which should make it load quicker.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug 27 2012 Steve Grubb <sgrubb at redhat.com> 0.3.9-1
- New upstream bug fix release
- Update init scripts to not try to load modules
- bz #781666 - CVE-2012-0698 DoS vulnerability in tcsd
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #781666 - CVE-2012-0698 DoS vulnerability in tcsd [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=781666
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update trousers' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list