Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Warning: Undefined array key "Description" in /var/www/www.linuxsecurity.com-443/html/lsadvisories/lsadvisories.php on line 220

Fedora 39: FEDORA-2024-40ee18b2e7 Critical: Rust CoreOS Installer DoS Issue

fedora
Calendar Grey June 2, 2024
Dist Fedora Esm H88
The latest Fedora 39 rust-coreos-installer upgrade bolsters security measures and resolves multiple challenges encountered within Rust software.
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries)

Summary

coreos-installer installs Fedora CoreOS or RHEL CoreOS to bare-metal

machines (or, occasionally, to virtual machines).

Update Information:

This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority security and / or safety fixes in crate dependencies that had not yet been handled via a separate (targeted) rebuild: h2 v0.3.26+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0332.html glib v0.19.4+ and backports (UB): core/pull/1343 hashbrown v0.14.5+ (UB): https://github.com/rust-lang/hashbrown/pull/511 rustls v0.22.4+, v0.21.11+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0336.html

Topics%20covered

Topics Covered

security advisory denial of service update critical Fedora installer Rust

Change Log

* Thu May 23 2024 Fabio Valentini - 0.21.0-3 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces. * Sat Mar 30 2024 Fabio Valentini - 0.21.0-2 - Relax too-strict dependencies to fix building with clap v4.5

References

Fedora Update Notification FEDORA-2024-40ee18b2e7 2024-06-02 03:36:56.060441 Name : rust-coreos-installer Product : Fedora 39 Version : 0.21.0 Release : 3.fc39 URL : Summary : Installer for Fedora CoreOS and RHEL CoreOS Description : coreos-installer installs Fedora CoreOS or RHEL CoreOS to bare-metal machines (or, occasionally, to virtual machines).

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-40ee18b2e7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: rust-coreos-installer
Product: Fedora 39
Version: 0.21.0
Release: 3.fc39
URL: Summary : Installer for Fedora CoreOS and RHEL CoreOS

Topics%20covered

Topics Covered

security advisory denial of service update critical Fedora installer Rust

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here