Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 29: 2018-149e3f1abc High: libcurl Buffer Overflow

fedora
Calendar Grey May 12, 2018
Dist Fedora Esm H88
To address the CVE-2018-10733 buffer over-read vulnerability in libgxps, a patch has been created. Update your Fedora 28 system via DNF to apply this fix
Add patch for CVE-2018-10733

Summary

libgxps is a GObject based library for handling and rendering XPS

documents.

Add patch for CVE-2018-10733

* Tue May 8 2018 Tom Hughes - 0.3.0-4

- Add patch for CVE-2018-10733

[ 1 ] Bug #1576112 - CVE-2018-10733 libgxps: heap based buffer over read in ft_font_face_hash function of gxps-fonts.c [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1576112

su -c 'dnf upgrade --advisory FEDORA-2018-078b082cbe' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Topics%20covered

Topics Covered

security advisory Fedora moderate severity buffer over-read libgxps

Change Log

References

Update Instructions

Product: Fedora 28
Version: 0.3.0
Release: 4.fc28
URL: https://wiki.gnome.org/Projects/libgxps
Summary: GObject based library for handling and rendering XPS documents

Topics%20covered

Topics Covered

security advisory Fedora moderate severity buffer over-read libgxps

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here