Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 37: FEDORA-2023-5029b92850 Critical Pack Fix for Stream Issues

fedora
Calendar Grey November 17, 2023
Dist Fedora Esm H88
Debian 12 security alert for packages related to CVE-2023-28410 addressing vulnerabilities in systemd affecting device management.
fix for CVE-2023-39325

Summary

pack is a CLI implementation of the Platform Interface Specification

for Cloud Native Buildpacks.

Update Information:

fix for CVE-2023-39325

Topics%20covered

Topics Covered

security advisory critical Fedora CVE fix pack stream resets Cloud Native

Change Log

* Wed Nov 8 2023 RH Container Bot - 0.32.0-1 - auto bump to v0.32.0 * Thu Jul 20 2023 Fedora Release Engineering - 0.30.0~pre2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

References


[ 1 ] Bug #2248399 - pack: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2248399

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-5029b92850' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: pack
Product: Fedora 37
Version: 0.32.0
Release: 1.fc37
URL: https://github.com/buildpacks/pack
Summary: Convert code into runnable images

Topics%20covered

Topics Covered

security advisory critical Fedora CVE fix pack stream resets Cloud Native

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here