Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 38 Pack Update FEDORA-2023-257f33c602 Critical: DoS Threat Fix

fedora
Calendar Grey November 17, 2023
Dist Fedora Esm H88
Notice regarding Fed 38 Pack addresses CVE-2023-39325; ensure to follow instructions for seamless setup experience.
Fix for CVE-2023-39325

Summary

pack is a CLI implementation of the Platform Interface Specification

for Cloud Native Buildpacks.

Update Information:

Fix for CVE-2023-39325

Topics%20covered

Topics Covered

security advisory Fedora DoS critical fix pack

Change Log

* Wed Nov 8 2023 RH Container Bot - 0.32.0-1 - auto bump to v0.32.0 * Thu Jul 20 2023 Fedora Release Engineering - 0.30.0~pre2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild

References


[ 1 ] Bug #2248399 - pack: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2248399

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-257f33c602' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: pack
Product: Fedora 38
Version: 0.32.0
Release: 1.fc38
URL: https://github.com/buildpacks/pack
Summary: Convert code into runnable images

Topics%20covered

Topics Covered

security advisory Fedora DoS critical fix pack

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here