Fedora 34: 2021-0578e23912 Moderate: Rust Trojan Source Threat

Rust is a systems programming language that runs blazingly fast, prevents

segfaults, and guarantees thread safety.

This package includes the Rust compiler and documentation generator.

Rust 1.56.1 adds a mitigation for CVE-2021-42574, the "trojan source" attack

that obfuscates code with BiDi control characters. The compiler will now error

on such characters in code comments and string/char literals. For more details,

see the upstream [security advisory](https://blog.rust-lang.org/2021/11/01/cve-2021-42574.html).

* Mon Nov 1 2021 Josh Stone - 1.56.1-1

- Update to 1.56.1.

su -c 'dnf upgrade --advisory FEDORA-2021-0578e23912' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure