[ALSA-2023:6492] Moderate: tang security update
Type:
security
Severity:
moderate
Release date:
2023-11-14
Description:
Tang is a server for binding data to network presence. It includes a daemon which provides cryptographic operations for binding to a remote service. The tang package provides the server side of the Network Bound Disk Encryption (NBDE) project. Security Fix(es): * tang: Race condition exists in the key generation and rotation functionality (CVE-2023-1672) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 tang-14-2.el9.aarch64.rpm d26fcb8302c792ebdf097c85f2c18beaebe34f08746c6f2dc4cdb28d751dd9da
ppc64le tang-14-2.el9.ppc64le.rpm 186519773ed1401e448009905bc551e15a2ea82ddf8d36fbd237cab7117d9a03
s390x tang-14-2.el9.s390x.rpm da9d84cb8c5123cab67914e8618c3e47d4a4733c45f8934286d82d8a550275cd
x86_64 tang-14-2.el9.x86_64.rpm df4a81862c840876cf78ed64de19a40a02de6d088d0ae2e7e02f8b38b3ad8a99
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.