Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Fedora 38: 2024-0c9aaeb447 Moderate: Python-CBOR2 Buffer Overflow Fix

fedora
Calendar Grey April 17, 2024
Dist Fedora Esm H88
Obtain details regarding the updates for Fedora 38 python-cbor2 2024-0c9aaeb447, addressing critical buffer overflow vulnerabilities as outlined in the most recent security notice.
Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361)

Summary

This library provides encoding and decoding for the Concise Binary Object

Representation (CBOR) (RFC 7049) serialization format.

Update Information:

Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361)

Topics%20covered

Topics Covered

security advisory moderate fedora buffer overflow software update security fix python-cbor2

Change Log

* Mon Apr 8 2024 Fabian Affolter - 5.6.2-1 - Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361) - Fixes CVE-2024-26134 (closes rhbz#2265036, closes rhbz#bug 2265035) * Sat Feb 3 2024 Fabian Affolter - 5.6.1-1 - Update to latest upstream release 5.6.1 (closes rhbz#2245361) * Fri Jan 26 2024 Fedora Release Engineering - 5.1.2-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering - 5.1.2-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Aug 30 2023 Carl George - 5.1.2-12 - Convert to pyproject macros - Validated license as SPDX identifier * Fri Jul 21 2023 Fedora Release Engineering - 5.1.2-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Thu Jun 15 2023 Python Maint - 5.1.2-10 - Rebuilt for Python 3.12

References


[ 1 ] Bug #2245361 - python-cbor2-5.6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2245361 [ 2 ] Bug #2261550 - python-cbor2: FTBFS in Fedora rawhide/f40 https://bugzilla.redhat.com/show_bug.cgi?id=2261550 [ 3 ] Bug #2265036 - CVE-2024-26134 python-cbor2: cbor2: Potential buffer overflow in CBOR2 decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2265036

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-0c9aaeb447' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Name: python-cbor2
Product: Fedora 38
Version: 5.6.2
Release: 1.fc38
URL: https://github.com/agronholm/cbor2
Summary: Python CBOR (de)serializer with extensive tag support

Topics%20covered

Topics Covered

security advisory moderate fedora buffer overflow software update security fix python-cbor2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here