Fedora 33: kpmcore 2020-73471e6414
Summary
KPMcore contains common code for managing partitions by KDE Partition Manager
and other KDE projects
Update kpmcore to 4.2.0 and rebuild all dependent packages. This update also
fixes CVE-2020-27187.
* Sat Oct 17 2020 Mattia Verga
- Update to stable release 4.2.0
[ 1 ] Bug #1890199 - CVE-2020-27187 kpmcore: kpmcore_externalcommand helper can be exploited in local privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=1890199
su -c 'dnf upgrade --advisory FEDORA-2020-73471e6414' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
FEDORA-2020-73471e6414 2020-10-23 22:01:02.263265 Product : Fedora 33 Version : 4.2.0 Release : 1.fc33 URL : https://github.com/KDE/kpmcore Summary : Library for managing partitions by KDE programs Description : KPMcore contains common code for managing partitions by KDE Partition Manager and other KDE projects Update kpmcore to 4.2.0 and rebuild all dependent packages. This update also fixes CVE-2020-27187. * Sat Oct 17 2020 Mattia Verga - 4.2.0-1 - Update to stable release 4.2.0 [ 1 ] Bug #1890199 - CVE-2020-27187 kpmcore: kpmcore_externalcommand helper can be exploited in local privilege escalation https://bugzilla.redhat.com/show_bug.cgi?id=1890199 su -c 'dnf upgrade --advisory FEDORA-2020-73471e6414' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Change Log
References