Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 37: 2023-566e354e4a Moderate: amanda Argument Checking Issue

fedora
Calendar Grey August 5, 2023
Dist Fedora Esm H88
The latest Fedora 37 update addresses CVE-2023-30577 affecting amanda version 3.5.4, and also includes enhancements to manual pages for improved usability.
Update to new upstream version 3.5.4

Summary

AMANDA, the Advanced Maryland Automatic Network Disk Archiver, is a

backup system that allows the administrator of a LAN to set up a

single master backup server to back up multiple hosts to one or more

tape drives or disk files. AMANDA uses native dump and/or GNU tar

facilities and can back up a large number of workstations running

multiple versions of Unix. Newer versions of AMANDA (including this

version) can use SAMBA to back up Microsoft(TM) Windows95/NT hosts.

The amanda package contains the core AMANDA programs and will need to

be installed on both AMANDA clients and AMANDA servers. Note that you

will have to install the amanda-client and/or amanda-server packages as

well.

Update Information:

Update to new upstream version 3.5.4. This brings a fix for a security issue, CVE-2023-30577. This update also fixes the manual pages.

Topics%20covered

Topics Covered

security advisory security issue update Fedora backup solution amanda

Change Log

* Thu Jul 27 2023 Jason Tibbitts - 3.5.4-3 - Add sources. * Thu Jul 27 2023 Jason Tibbitts - 3.5.4-2 - Fix build of manpages * Thu Jul 27 2023 Jason Tibbitts - 3.5.4-1 - Update to 3.5.4 * Wed Jul 19 2023 Fedora Release Engineering - 3.5.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Tue Jul 11 2023 Jitka Plesnikova - 3.5.3-4 - Perl 5.38 rebuild * Tue May 2 2023 Josef Ridky - 3.5.3-3 - move to SPDX license format * Fri Apr 14 2023 Florian Weimer - 3.5.3-2 - Port configure script to C99

References


[ 1 ] Bug #2208319 - Amanda was built without man pages https://bugzilla.redhat.com/show_bug.cgi?id=2208319 [ 2 ] Bug #2226890 - TRIAGE-CVE-2023-30577 amanda: Improper argument checking for runtar.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2226890

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-566e354e4a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Name: amanda
Product: Fedora 37
Version: 3.5.4
Release: 3.fc37
URL: https://www.amanda.org/
Summary: A network-capable tape backup solution

Topics%20covered

Topics Covered

security advisory security issue update Fedora backup solution amanda

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here