Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Fedora 36 - FEDORA-2022-21cf5402fc Critical: Python-YARA Update

fedora
Calendar Grey August 16, 2022
Dist Fedora Esm H88
The upgrade to python-yara version 4.2.3 within Fedora 36 addresses significant vulnerabilities in the malware detection utility.
Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2

Summary

Python binding for the YARA pattern matching tool.

YARA is a tool aimed at (but not limited to) helping malware researchers to

identify and classify malware samples. With YARA you can create descriptions

of malware families (or whatever you want to describe) based on textual or

binary patterns. Each description, a.k.a rule, consists of a set of strings

and a Boolean expression which determine its logic.

Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2

* Tue Aug 9 2022 Mikel Olasagasti Uranga - 4.2.0-5

- Rebuilt for yara-4.2.3

* Mon Aug 8 2022 Mikel Olasagasti Uranga - 4.2.0-4

- Skip testModuleData again for F36, fixes rhbz#2116289

* Fri Jul 22 2022 Fedora Release Engineering - 4.2.0-3

- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild

* Mon Jun 13 2022 Python Maint - 4.2.0-2

- Rebuilt for Python 3.11

* Fri May 27 2022 Mikel Olasagasti Uranga - 4.2.0-1

- Bump to 4.2.0 rhbz#2063287 fixes FTBFS rhbz#2064646

- Minor changes to spec, like using https for URL

- Simplify some of checks for different builds

[ 1 ] Bug #2112508 - Update yara to 4.2.2

https://bugzilla.redhat.com/show_bug.cgi?id=2112508

[ 2 ] Bug #2116289 - F36FailsToInstall: python3-yara

https://bugzilla.redhat.com/show_bug.cgi?id=2116289

[ 3 ] Bug #2116594 - yara-4.2.3 is available

https://bugzilla.redhat.com/show_bug.cgi?id=2116594

[ 4 ] Bug #2117081 - F36FailsToInstall: python3-yara

https://bugzilla.redhat.com/show_bug.cgi?id=2117081

[ 5 ] Bug #2117161 - python-yara-4.2.3 is available

https://bugzilla.redhat.com/show_bug.cgi?id=2117161

su -c 'dnf upgrade --advisory FEDORA-2022-21cf5402fc' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it:

Topics%20covered

Topics Covered

security advisory critical Fedora malware python-yara

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 36
Version: 4.2.0
Release: 5.fc36
URL: https://github.com/VirusTotal/yara-python/
Summary: Python binding for the YARA pattern matching tool

Topics%20covered

Topics Covered

security advisory critical Fedora malware python-yara

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here