--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2022-a36ba48049
2023-01-05 01:16:36.900007
--------------------------------------------------------------------------------Name        : binwalk
Product     : Fedora 37
Version     : 2.3.3
Release     : 1.fc37
URL         : https://github.com/ReFirmLabs/binwalk
Summary     : Firmware analysis tool
Description :
Binwalk is a tool for searching a given binary image for embedded files and
executable code. Specifically, it is designed for identifying files and code
embedded inside of firmware images. Binwalk uses the python-magic library, so
it is compatible with magic signatures created for the Unix file utility.

--------------------------------------------------------------------------------Update Information:

Security fix for CVE-2021-4287
--------------------------------------------------------------------------------ChangeLog:

* Tue Dec 27 2022 Scott Talbert  - 2.3.3-1
- Update to new upstream release 2.3.3 (#2003337 #2156566)
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #2156565 - CVE-2021-4287 binwalk: symlink directory traversal vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=2156565
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-a36ba48049' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Do not reply to spam, report it: https://pagure.io/login/

Fedora 37: binwalk 2022-a36ba48049

January 5, 2023
Security fix for CVE-2021-4287

Summary

Binwalk is a tool for searching a given binary image for embedded files and

executable code. Specifically, it is designed for identifying files and code

embedded inside of firmware images. Binwalk uses the python-magic library, so

it is compatible with magic signatures created for the Unix file utility.

Security fix for CVE-2021-4287

* Tue Dec 27 2022 Scott Talbert - 2.3.3-1

- Update to new upstream release 2.3.3 (#2003337 #2156566)

[ 1 ] Bug #2156565 - CVE-2021-4287 binwalk: symlink directory traversal vulnerability

https://bugzilla.redhat.com/show_bug.cgi?id=2156565

su -c 'dnf upgrade --advisory FEDORA-2022-a36ba48049' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it: https://pagure.io/login/

FEDORA-2022-a36ba48049 2023-01-05 01:16:36.900007 Product : Fedora 37 Version : 2.3.3 Release : 1.fc37 URL : https://github.com/ReFirmLabs/binwalk Summary : Firmware analysis tool Description : Binwalk is a tool for searching a given binary image for embedded files and executable code. Specifically, it is designed for identifying files and code embedded inside of firmware images. Binwalk uses the python-magic library, so it is compatible with magic signatures created for the Unix file utility. Security fix for CVE-2021-4287 * Tue Dec 27 2022 Scott Talbert - 2.3.3-1 - Update to new upstream release 2.3.3 (#2003337 #2156566) [ 1 ] Bug #2156565 - CVE-2021-4287 binwalk: symlink directory traversal vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=2156565 su -c 'dnf upgrade --advisory FEDORA-2022-a36ba48049' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/ Do not reply to spam, report it: https://pagure.io/login/

Change Log

References

Update Instructions

Severity
Product : Fedora 37
Version : 2.3.3
Release : 1.fc37
URL : https://github.com/ReFirmLabs/binwalk
Summary : Firmware analysis tool

Related News

Defending Against Remote Code Execution in Google Chrome: A Critical Update
2 - 3 min read
Google Chrome, a widely used web browser, serves millions of internet users by connecting them to the online world. Unfortunately, severe
Navigating the Linux Kernel
2 - 4 min read
The Linux operating system, widely acclaimed for its robustness and security , recently received widespread media attention due to a significant
Staying a Step Ahead of Adversaries: Mitigating Chromium
2 - 4 min read
Google Chrome, one of the world's most widely used web browsers, has recently been scrutinized due to the discovery of multiple Chromium
Unmasking Cicada3301: Examining the Threat of the New Rust-Based Ransomware
2 - 4 min read
Ransomware has long been a severe threat to organizations and admins alike. Recently, cybersecurity researchers discovered a new variant called
Buffer Overflow Exploits in Linux: Origins, Impact, and Countermeasures
3 - 6 min read
Buffer overflow vulnerabilities have long been one of the biggest headaches in computer security, especially on Linux operating systems that power
8 Expert-Recommended Security Practices to Fortify Your Linux Systems
4 - 8 min read
As a Linux admin or an infosec professional, you understand how the security landscape changes due to evolving threats, newly discovered
Open Source Strategies for Enhancing Security in Digital Business Operations
5 - 9 min read
Digital transformation, powered by the principles of open-source security , is vital for businesses looking to excel in today's technology-driven
Microsoft Update Mayhem: Rescuing Linux Dual-Boot Systems from Secure Boot Woes
2 - 4 min read
Microsoft's recent patch, intended to strengthen Secure Boot defenses, has resulted in an unexpected setback for Linux-Windows dual-boot setups

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved