Fedora 24 Critical Update: Fix for Guile HTTP Threats and Umask Issues
fedora
October 18, 2016
Update to the latest stable release, which fixes CVE-2016-8605 and CVE-2016-8606.
Summary
GUILE (GNU's Ubiquitous Intelligent Language for Extension) is a library
implementation of the Scheme programming language, written in C. GUILE
provides a machine-independent execution platform that can be linked in
as a library during the building of extensible programs.
Install the guile package if you'd like to add extensibility to programs
that you are developing.
Update Information:
Update to the latest stable release, which fixes CVE-2016-8605 and CVE-2016-8606.
Topics Covered
Change Log
References
[ 1 ] Bug #1383966 - CVE-2016-8605 guile: Thread-unsafe umask modification
https://bugzilla.redhat.com/show_bug.cgi?id=1383966
[ 2 ] Bug #1383972 - CVE-2016-8606 guile: REPL server vulnerable to HTTP inter-protocol attacks
https://bugzilla.redhat.com/show_bug.cgi?id=1383972
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update guile' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: guile
Product: Fedora 24
Version: 2.0.13
Release: 1.fc24
Summary: A GNU implementation of Scheme for application extensibility
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!