Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 556
Alerts This Week
Warning Icon 1 556

Fedora 38 FEDORA-2024-0f08e59f25 Moderate: Editorconfig Buffer Overflow

fedora
Calendar Grey April 19, 2024
Dist Fedora Esm H88
Fedora 38 enhancements improve editorconfig's protections by addressing several buffer and pointer overflow vulnerabilities.
Update to 0.12.7: fix pointer overflow in STRING_CAT; fix a few more stack buffer overflows.

Summary

EditorConfig makes it easy to maintain the correct coding style when

switching between different text editors and between different projects.

The EditorConfig project maintains a file format and plugins for various

text editors which allow this file format to be read and used by those

editors.

Update Information:

Update to 0.12.7: fix pointer overflow in STRING_CAT; fix a few more stack buffer overflows.

Change Log

* Wed Apr 3 2024 Benjamin A. Beasley - 0.12.7-1 - Update to 0.12.7 (close RHBZ#2272370) * Fri Mar 8 2024 Yaakov Selkowitz - 0.12.6-5 - Use bundled uthash in RHEL builds * Wed Jan 24 2024 Fedora Release Engineering - 0.12.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 0.12.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Jul 19 2023 Fedora Release Engineering - 0.12.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

References


[ 1 ] Bug #2272370 - editorconfig-0.12.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272370

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-0f08e59f25' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: editorconfig
Product: Fedora 38
Version: 0.12.7
Release: 1.fc38
Summary: Parser for EditorConfig files written in C

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.