Release 0.13.0-rc2. (#896)

This RC reflects the changes from release 0.12.2. Bug Fixes * Update bcder to at least 0.7.3 to fix various decoding issues that could lead to a panic when processing invalid RPKI objects. * Check the request URI when generating a path for storing a copy of a RRDP response with the `rrdp-keep-responses` option to avoid path traversal. ([#894]. Found by Haya Shulman, Donika Mirdita and Niklas Vogel. Assigned CVE-2023-39916.)
NLnetLabs · Sep 13, 2023 · 0f4fc4b · 0f4fc4b
1 parent 76d9ef3
commit 0f4fc4b
Show file tree

Hide file tree

Showing 4 changed files with 8 additions and 6 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -1,7 +1,7 @@
 [package]
 # Note: some of these values are also used when building Debian packages below.
 name = "routinator"
-version = "0.13.0-dev"
+version = "0.13.0-rc2"
 edition = "2021"
 rust-version = "1.70"
 authors = ["The NLnet Labs RPKI Team <rpki@nlnetlabs.nl>"]

diff --git a/Changelog.md b/Changelog.md
@@ -1,6 +1,10 @@
 # Change Log
 
-## Unreleased future version
+## 0.13.0-rc2
+
+Released 2023-09-13.
+
+This RC reflects the changes from release 0.12.2.
 
 Bug Fixes
 
@@ -11,8 +15,6 @@ Bug Fixes
   ([#894]. Found by Haya Shulman, Donika Mirdita and Niklas Vogel.
   Assigned CVE-2023-39916.)
 
-Other Changes
-
 [#894]: https://github.com/NLnetLabs/routinator/pull/894
 
 

diff --git a/doc/routinator.1 b/doc/routinator.1
@@ -27,7 +27,7 @@ level margin: \\n[rst2man-indent\\n[rst2man-indent-level]]
 .\" new: \\n[rst2man-indent\\n[rst2man-indent-level]]
 .in \\n[rst2man-indent\\n[rst2man-indent-level]]u
 ..
-.TH "ROUTINATOR" "1" "Jul 13, 2023" "0.13.0-dev" "Routinator"
+.TH "ROUTINATOR" "1" "Sep 13, 2023" "0.13.0-rc2" "Routinator"
 .SH NAME
 routinator \- RPKI relying party software
 .SH SYNOPSIS