4 matches found
CVE-2017-1000001
CVE-2017-1000001 affects FedMsg 0.18.1 and earlier, where a message validation flaw can occur if validation is configured to run but is not enabled. Affected component: FedMsg (Python package for messaging). Root cause: message validation may not be enabled as configured, enabling potential bypas...
Fedora 24 : fedmsg (2017-a73bc7ac5d)
Fix validation logic in the base consumer The base consumer is intended to only derive its validation switch from the on-disk configuration if the child class doesn't override the validatesignatures switch. There was a bug here where the default value provided in the base class made it appear as ...
Fedora Update for fedmsg FEDORA-2017-fff6e1af37
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : fedmsg (2017-fff6e1af37)
Fix validation logic in the base consumer The base consumer is intended to only derive its validation switch from the on-disk configuration if the child class doesn't override the validatesignatures switch. There was a bug here where the default value provided in the base class made it appear as ...