- Issued:
- 2019-08-06
- Updated:
- 2019-08-06
RHBA-2019:2228 - Bug Fix Advisory
Synopsis
pki-core bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
An update for pki-core is now available for Red Hat Enterprise Linux 7.
Description
The Public Key Infrastructure (PKI) Core contains fundamental packages required by Red Hat Certificate System.
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.7 Release Notes linked from the References section.
Users of pki-core are advised to upgrade to these updated packages.
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Enterprise Linux Workstation 7 x86_64
- Red Hat Enterprise Linux Desktop 7 x86_64
- Red Hat Enterprise Linux for IBM z Systems 7 s390x
- Red Hat Enterprise Linux for Power, big endian 7 ppc64
- Red Hat Enterprise Linux for Scientific Computing 7 x86_64
- Red Hat Enterprise Linux for Power, little endian 7 ppc64le
Fixes
- BZ - 1372056 - pkidestroy may not remove all files
- BZ - 1468348 - [RFE] Offline Certificate Renewal System
- BZ - 1554055 - Permit certain SHA384 FIPS ciphers to be enabled by default for RSA and ECC . . .
- BZ - 1578389 - Unsupported RSA_ ciphers should be removed from the default ciphers list
- BZ - 1616134 - Unable to install with admin-generated keys
- BZ - 1617894 - Auth plugins leave passwords in the access log and audit log using REST
- BZ - 1624097 - CC: Identify version/release of pki-ca, pki-kra, pki-ocsp, pki-tks, and pki-tps remotely [RHEL]
- BZ - 1628410 - CMC: add config to allow non-clientAuth
- BZ - 1633422 - Rebase pki-core from 10.5.9 to 10.5.16 (RHEL)
- BZ - 1633761 - Installation of CA using an existing CA fails
- BZ - 1638379 - PKI startup initialization process should not depend on LDAP operational attributes
- BZ - 1639710 - PKI subsystem process is not shutdown when there is no space on the disk to write logs
- BZ - 1641119 - CC: CA/OCSP startup fail on SystemCertsVerification if enableOCSP is true
- BZ - 1644769 - pkispawn fails due to name collision with /var/log/pki/<instance>
- BZ - 1653863 - CC: tools supporting CMC requests output keyID needs to be captured in file
- BZ - 1658293 - CC: Simplifying Web UI session timeout configuration
- BZ - 1666853 - CC: unable to verify cert before import
CVEs
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux Server 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| x86_64 | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.x86_64.rpm | SHA-256: 0824256ae2d25f90316843a8f8159832e531a628bb932f327021c1998fb7497e |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.x86_64.rpm | SHA-256: 3af6720fc6f27a602f2e54ea4e157855f7eef525e5d4ac8a018cbc24cec0d69d |
| pki-tools-10.5.16-3.el7.x86_64.rpm | SHA-256: d1fe2503de649b6c8e6e3ce36023175bd0e586be4247fa3f9413d455f5ad22e4 |
Red Hat Enterprise Linux Workstation 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| x86_64 | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.x86_64.rpm | SHA-256: 0824256ae2d25f90316843a8f8159832e531a628bb932f327021c1998fb7497e |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.x86_64.rpm | SHA-256: 3af6720fc6f27a602f2e54ea4e157855f7eef525e5d4ac8a018cbc24cec0d69d |
| pki-tools-10.5.16-3.el7.x86_64.rpm | SHA-256: d1fe2503de649b6c8e6e3ce36023175bd0e586be4247fa3f9413d455f5ad22e4 |
Red Hat Enterprise Linux Desktop 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| x86_64 | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.x86_64.rpm | SHA-256: 0824256ae2d25f90316843a8f8159832e531a628bb932f327021c1998fb7497e |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.x86_64.rpm | SHA-256: 3af6720fc6f27a602f2e54ea4e157855f7eef525e5d4ac8a018cbc24cec0d69d |
| pki-tools-10.5.16-3.el7.x86_64.rpm | SHA-256: d1fe2503de649b6c8e6e3ce36023175bd0e586be4247fa3f9413d455f5ad22e4 |
Red Hat Enterprise Linux for IBM z Systems 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| s390x | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.s390x.rpm | SHA-256: a3fedb9f4884265d63f80a89965522bd536b34c55d96db8f20594440f7d2569b |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.s390x.rpm | SHA-256: 764a5b21e691ebfd372aaf8e5fb75f07d0fbe3260d6269cc1b227e07d4e96a02 |
| pki-tools-10.5.16-3.el7.s390x.rpm | SHA-256: f1aa00de24bde0de5d1cb5a016b7e0327c810da5c37edb6a6c0ef20f989498c1 |
Red Hat Enterprise Linux for Power, big endian 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| ppc64 | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.ppc64.rpm | SHA-256: 3d8ea0b533d960286f9c3a6facbc40154cde7818410dfea8b1a473e407df93db |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.ppc64.rpm | SHA-256: 43c41ec35919c3179ce3b896eb42e3eae3ff5212ad360f8ffa260fc91f1d9a7b |
| pki-tools-10.5.16-3.el7.ppc64.rpm | SHA-256: 56b6dcce039e2bbb8496372b5b1786414a0f45d66120c37bbecd6e5a805d1cf1 |
Red Hat Enterprise Linux for Scientific Computing 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| x86_64 | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.x86_64.rpm | SHA-256: 0824256ae2d25f90316843a8f8159832e531a628bb932f327021c1998fb7497e |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.x86_64.rpm | SHA-256: 3af6720fc6f27a602f2e54ea4e157855f7eef525e5d4ac8a018cbc24cec0d69d |
| pki-tools-10.5.16-3.el7.x86_64.rpm | SHA-256: d1fe2503de649b6c8e6e3ce36023175bd0e586be4247fa3f9413d455f5ad22e4 |
Red Hat Enterprise Linux for Power, little endian 7
| SRPM | |
|---|---|
| pki-core-10.5.16-3.el7.src.rpm | SHA-256: efd8019881ea58564a5d7660a3a8305991c02095c771047d33cdb6ae8a13f7e3 |
| ppc64le | |
| pki-base-10.5.16-3.el7.noarch.rpm | SHA-256: 1acd4c93659f9a27c88658c2f3403f9566d7b44272521209fba07bcb34888b2a |
| pki-base-java-10.5.16-3.el7.noarch.rpm | SHA-256: e372a0727d7012e92a0aa36d0599b6bd725f4f9c6e2d5f9ae2e1dd9ec09f204d |
| pki-ca-10.5.16-3.el7.noarch.rpm | SHA-256: e7c8582168b6b6d586a3a07e98fa5c33d05adeaf1a3f8a62f86d8c4a3a90d8e3 |
| pki-core-debuginfo-10.5.16-3.el7.ppc64le.rpm | SHA-256: b7efae0fd2ce703726c01ec461dcc7967c2e048bfeb1b176cd21bc46e53a6fbb |
| pki-core-debuginfo-10.5.16-3.el7.ppc64le.rpm | SHA-256: b7efae0fd2ce703726c01ec461dcc7967c2e048bfeb1b176cd21bc46e53a6fbb |
| pki-javadoc-10.5.16-3.el7.noarch.rpm | SHA-256: 2b93a8eba7a72e70244bdccfedb06b6198e36d252bc2e3bccb9b4e28370f60de |
| pki-kra-10.5.16-3.el7.noarch.rpm | SHA-256: 65404c12a056aad24198dccd84ef3d75d3526dc52fad6a52822e3fd9a9a5f2bc |
| pki-server-10.5.16-3.el7.noarch.rpm | SHA-256: 3cb7c9c5ceab7caad926e6e167b2f4d73c2633e2cd4eb244ea5cae3940af720a |
| pki-symkey-10.5.16-3.el7.ppc64le.rpm | SHA-256: d961962e9f8dc6b7493ecca7676764d760b7ea6d14ec10e69dd3e1fb212e685a |
| pki-tools-10.5.16-3.el7.ppc64le.rpm | SHA-256: a8f3f1477655e61cbf48cb171192c630fb04df7c0970150adda6260c73d65085 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.