Detections
Analytics
Fedora 42 : rpki-client (2026-d2431d8ac0)
high Nessus Plugin ID 294943
Synopsis
The remote Fedora host is missing one or more security updates.Description
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d2431d8ac0 advisory.# rpki-client 9.7
- The Canonical Cache Representation underwent a breaking change after the adoption of https://datatracker.ietf.org/doc/draft-ietf-sidrops-rpki-ccr/ as a SIDROPS working group item. Apart from several CMS-related cosmetics it now uses a IANA-assigned content type. As a result, rpki-client 9.7 cannot parse rpki-client 9.6's `.ccr` files and vice versa.
- Support for Ghostbusters Record objects (RFC 6493) has been removed. Nobody showed interest in deploying this and there are other, widely supported ways of exchanging operational contact information such as RDAP. RFC 6493 is undergoing a status review to be marked as historic:
https://datatracker.ietf.org/doc/status-change-rpki-ghostbusters-record-to-historic/
- Prepare the code base for the opaque `ASN1_STRING` structure in OpenSSL 4.
- Fixed two reliability issues: one where a malicious RPKI Certification Authority can trigger a crash, one where malicious Trust Anchor can provoke memory exhaustion.
Tenable has extracted the preceding description block directly from the Fedora security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected rpki-client package.See Also
https://bodhi.fedoraproject.org/updates/FEDORA-2026-d2431d8ac0
Plugin Details
Severity: High
ID: 294943
File Name: fedora_2026-d2431d8ac0.nasl
Version: 1.1
Type: local
Agent: unix
Family: Fedora Local Security Checks
Published: 1/22/2026
Updated: 1/22/2026
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Vulnerability Information
CPE: p-cpe:/a:fedoraproject:fedora:rpki-client, cpe:/o:fedoraproject:fedora:42
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 1/13/2026
Vulnerability Publication Date: 1/13/2026
Reference Information
FEDORA: 2026-d2431d8ac0