Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 34: Advisory FEDORA-2021-0d42c7cb33 Critical: CGAL Code Exec Risk

fedora
Calendar Grey March 22, 2021
Dist Fedora Esm H88
Investigate the Fedora security notice regarding CGAL that highlights severe vulnerabilities related to arbitrary code execution along with suggested patches.
New upstream release CGAL-5.2.1

Summary

Libraries for CGAL applications.

CGAL is a collaborative effort of several sites in Europe and

Israel. The goal is to make the most important of the solutions and

methods developed in computational geometry available to users in

industry and academia in a C++ library. The goal is to provide easy

access to useful, reliable geometric algorithms.

New upstream release CGAL-5.2.1. Security fix for CVE-2020-28601,

CVE-2020-28636, CVE-2020-35628, CVE-2020-35636.

* Wed Mar 17 2021 Laurent Rineau - 5.2.1-1

- New upstream release

[ 1 ] Bug #1939901 - CVE-2020-28601 CGAL: ode execution vulnerability may lead to oob read

https://bugzilla.redhat.com/show_bug.cgi?id=1939901

[ 2 ] Bug #1939904 - CVE-2020-28636 CGAL: code execution vulnerability may lead to oob read

https://bugzilla.redhat.com/show_bug.cgi?id=1939904

[ 3 ] Bug #1939905 - CVE-2020-35628 CGAL: code execution vulnerability may lead to oob read

https://bugzilla.redhat.com/show_bug.cgi?id=1939905

[ 4 ] Bug #1939906 - CVE-2020-35636 CGAL: code execution vulnerability may lead to oob read

https://bugzilla.redhat.com/show_bug.cgi?id=1939906

su -c 'dnf upgrade --advisory FEDORA-2021-0d42c7cb33' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Topics%20covered

Topics Covered

security advisory update Fedora code execution security fix critical threat out of bounds CGAL

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 34
Version: 5.2.1
Release: 1.fc34
URL: https://www.cgal.org/
Summary: Computational Geometry Algorithms Library

Topics%20covered

Topics Covered

security advisory update Fedora code execution security fix critical threat out of bounds CGAL

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here