Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Fedora 34: FEDORA-2021-bd2de1337e Critical: Fossil Remote Exploit Risk

fedora
Calendar Grey December 4, 2020
Dist Fedora Esm H88
Ubuntu 20.04 upgrades Git to version 2.30, fixing security vulnerabilities and improving collaboration tools.
Upgrade to fossil 2.12.1

Summary

Fossil is a simple, high-reliability, distributed software configuration

management with distributed bug tracking, distributed wiki and built-in web

interface.

Upgrade to fossil 2.12.1

* Mon Oct 19 2020 Sheng Mao - 2.12.1-1

- Upgrade to fossil 2.12.1 after adding FTS4 to system-wide sqlite (rhbz#1887106)

rhbz#1863577, rhbz#1870790

* Sat Aug 1 2020 Fedora Release Engineering - 2.8-5

- Second attempt - Rebuilt for

https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

* Mon Jul 27 2020 Fedora Release Engineering - 2.8-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[ 1 ] Bug #1863577 - fossil: FTBFS in Fedora rawhide/f33

https://bugzilla.redhat.com/show_bug.cgi?id=1863577

[ 2 ] Bug #1870790 - CVE-2020-24614 fossil: allows remote authenticated users to execute arbitrary code [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1870790

su -c 'dnf upgrade --advisory FEDORA-2020-ac6cf99f87' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 33
Version: 2.12.1
Release: 1.fc33
Summary: A distributed SCM with bug tracking and wiki

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here