Read Time:17 Second
FEDORA-EPEL-2022-d7255ac6f5
Packages in this update:
ecdsautils-0.4.1-2.el7
Update description:
Fixes CVE-2022-24884 (Improper Verification of ECDSA Signatures). In previous versions ecdsautils would erroneously accept all-zero signatures as valid.
More information can be found here: https://github.com/freifunk-gluon/ecdsautils/security/advisories/GHSA-qhcg-9ffp-78pw