Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-38079

jose: rebase to jose-14 [rhel-9]

    • Icon: Bug Bug
    • Resolution: Done-Errata
    • Icon: Critical Critical
    • rhel-9.5
    • rhel-9.5
    • jose
    • None
    • jose-14-1.el9
    • None
    • None
    • Rebase
    • 2
    • rhel-sst-security-special-projects
    • ssg_security
    • 15
    • None
    • False
    • Hide

      None

      Show
      None
    • Yes
    • SECENGSP Cycle 3, SECENGSP Cycle 4
    • Enhancement
    • Hide
      .`jose` rebased to version 14

      The `jose` package has been upgraded to upstream version 14. `jose` is a C-language implementation of the Javascript Object Signing and Encryption (JOSE) standards. The most important enhancements and fixes include the following:

      * Improved bound checks for the `len` function for the `oct` JWK Type in OpenSSL.
      * The protected JSON Web Encryption (JWE) headers no longer contain `zip`.
      * `jose` avoids potential denial of service (DoS) attacks by using high decompression chunks.
      Show
      .`jose` rebased to version 14 The `jose` package has been upgraded to upstream version 14. `jose` is a C-language implementation of the Javascript Object Signing and Encryption (JOSE) standards. The most important enhancements and fixes include the following: * Improved bound checks for the `len` function for the `oct` JWK Type in OpenSSL. * The protected JSON Web Encryption (JWE) headers no longer contain `zip`. * `jose` avoids potential denial of service (DoS) attacks by using high decompression chunks.
    • Done
    • None

      jose package should be updated to latest upstream stable release (jose 14)

      Upstream release that is considered latest: 14
      Current version/release in RHEL-9: 11-3.el9
      URL: https://github.com/latchset/jose

              sarroutb@redhat.com Sergio Arroutbi
              sarroutb@redhat.com Sergio Arroutbi
              Sergio Correia Sergio Correia
              SSG Security QE SSG Security QE
              Mirek Jahoda Mirek Jahoda
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: