Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 39: FEDORA-2024-d8ac19de55 Severe: python-astropy RCE Vulnerability

fedora
Calendar Grey July 5, 2024
Dist Fedora Esm H88
The Python-Astropy package in Fedora has been updated with security advisories to mitigate potential remote code execution vulnerabilities.
Security fix for CVE-2023-41334

Summary

The Astropy project is a common effort to develop a single core package

for Astronomy. Major packages such as PyFITS, PyWCS, vo, and asciitable

already merged in, and many more components being worked on. In

particular, we are developing imaging, photometric, and spectroscopic

functionality, as well as frameworks for cosmology, unit handling, and

coordinate transformations.

Update Information:

Security fix for CVE-2023-41334

Topics%20covered

Topics Covered

security advisory Fedora remote code execution security fix python-astropy

Change Log

* Wed Jun 26 2024 Sergio Pascual - 5.3.3-1 - New upstream source 5.3.3 - Fixes #2270187

References


[ 1 ] Bug #2270185 - CVE-2023-41334 python-astropy: Remote code execution in TranformGraph().to_dot_graph function https://bugzilla.redhat.com/show_bug.cgi?id=2270185

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-d8ac19de55' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: python-astropy
Product: Fedora 39
Version: 5.3.3
Release: 1.fc39
URL: https://www.astropy.org/
Summary: A Community Python Library for Astronomy

Topics%20covered

Topics Covered

security advisory Fedora remote code execution security fix python-astropy

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here