Fedora 38: Security Fix for Exercism 3.2.0 Memory Issues
fedora
September 5, 2023
Update to latest version (#2228145) Security fix for CVE-2022-3064, CVE-2022-41717
Summary
Exercism provides a way to do the problems on https://exercism.org/.
This CLI ships as a binary with no additional run-time requirements. This means
that if you're doing the Haskell problems on exercism you don't need a working
Python or Ruby environment simply to fetch and submit exercises.
Update Information:
Update to latest version (#2228145) Security fix for CVE-2022-3064, CVE-2022-41717
Topics Covered
Change Log
* Sun Aug 27 2023 Elliott Sales de Andrade
References
[ 1 ] Bug #2161274 - CVE-2022-41717 golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests
https://bugzilla.redhat.com/show_bug.cgi?id=2161274
[ 2 ] Bug #2163037 - CVE-2022-3064 go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents
https://bugzilla.redhat.com/show_bug.cgi?id=2163037
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-e82fd2abcb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Name: exercism
Product: Fedora 38
Version: 3.2.0
Release: 1.fc38
Summary: Exercism command-line interface
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!