Fedora 39: Advisory FEDORA-2024-270cd506bb Critical: Clojure DoS Issue
fedora
March 24, 2024
Security fix for CVE-2024-22871 Update to upstream release 1.11.2
Summary
Clojure is a dynamic programming language that targets the Java
Virtual Machine. It is designed to be a general-purpose language,
combining the approachability and interactive development of a
scripting language with an efficient and robust infrastructure for
multithreaded programming. Clojure is a compiled language - it
compiles directly to JVM bytecode, yet remains completely
dynamic. Every feature supported by Clojure is supported at
runtime. Clojure provides easy access to the Java frameworks, with
optional type hints and type inference, to ensure that calls to Java
can avoid reflection.
Update Information:
Security fix for CVE-2024-22871 Update to upstream release 1.11.2
Topics Covered
Change Log
* Fri Mar 15 2024 Markku Korkeala
References
[ 1 ] Bug #2266785 - CVE-2024-22871 clojure: denial of service (DoS) via the clojure.core$partial$fn__5920 function.
https://bugzilla.redhat.com/show_bug.cgi?id=2266785
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-270cd506bb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: clojure
Product: Fedora 39
Version: 1.11.2
Release: 1.fc39
URL: https://clojure.org/
Summary: A dynamic programming language that targets the Java Virtual Machine
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!