What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-8e6ae98f81
2023-09-23 00:16:13.955908
--------------------------------------------------------------------------------

Name        : firecracker
Product     : Fedora 39
Version     : 1.4.1
Release     : 2.fc39
URL         : https://firecracker-microvm.github.io/
Summary     : Secure and fast microVMs for serverless computing
Description :
Firecracker is an open source virtualization technology that is purpose-built
for creating and managing secure, multi-tenant container and function-based
services that provide serverless operational models.  Firecracker runs
workloads in lightweight virtual machines, called microVMs, which combine the
security and isolation properties provided by hardware virtualization
technology with the speed and flexibility of containers.

This package does not include all of the security features of an official
release.  It is not production ready without additional sandboxing.

--------------------------------------------------------------------------------
Update Information:

Rebuild dependent packages for vm-memory v0.12.2 to address CVE-2023-41051 /
RUSTSEC-2023-0056.  - -
bin/cvename.cgi?name=CVE-2023-41051 -
https://rustsec.org/advisories/RUSTSEC-2023-0056.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 19 2023 Fabio Valentini  - 1.4.1-2
- Rebuild for vm-memory v0.12.2 / CVE-2023-41051.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2236894 - CVE-2023-41051 rust-vm-memory: vm-memory: out-of-bounds access in memory functions [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2236894
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-8e6ae98f81' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 39: firecracker 2023-8e6ae98f81

September 23, 2023
Rebuild dependent packages for vm-memory v0.12.2 to address CVE-2023-41051 / RUSTSEC-2023-0056

Summary

Firecracker is an open source virtualization technology that is purpose-built

for creating and managing secure, multi-tenant container and function-based

services that provide serverless operational models. Firecracker runs

workloads in lightweight virtual machines, called microVMs, which combine the

security and isolation properties provided by hardware virtualization

technology with the speed and flexibility of containers.

This package does not include all of the security features of an official

release. It is not production ready without additional sandboxing.

Update Information:

Rebuild dependent packages for vm-memory v0.12.2 to address CVE-2023-41051 / RUSTSEC-2023-0056. - - bin/cvename.cgi?name=CVE-2023-41051 - https://rustsec.org/advisories/RUSTSEC-2023-0056.html

Change Log

* Tue Sep 19 2023 Fabio Valentini - 1.4.1-2 - Rebuild for vm-memory v0.12.2 / CVE-2023-41051.

References

[ 1 ] Bug #2236894 - CVE-2023-41051 rust-vm-memory: vm-memory: out-of-bounds access in memory functions [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2236894

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-8e6ae98f81' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : firecracker
Product : Fedora 39
Version : 1.4.1
Release : 2.fc39
URL : https://firecracker-microvm.github.io/
Summary : Secure and fast microVMs for serverless computing

Related News

Researchers Warn of Wi-Fi Security Flaw Affecting iOS, Android, Linux

Apr 2, 2023

Linux Foundation Creates OpenWallet Foundation

Feb 27, 2023

Git 2.40.1 & Other Updates Address Three High-Impact Security Vulnerabilities

May 4, 2023

Linux Kernel Vulnerabilities in Ubuntu Let Hackers Launch DOS Attack & Execute Arbitrary Code

Mar 29, 2023

News

Advisories

HOWTOs

Features

Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses

About Us

Powered By

Footer Logo