Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 40: FEDORA-2024-c7bb042d5b Critical: Orc Buffer Overflow

fedora
Calendar Grey August 8, 2024
Dist Fedora Esm H88
The latest Fedora 40 update for the orc library mitigates critical buffer overflow issues and strengthens total system integrity.
Update to 0.4.39

Summary

Orc is a library and set of tools for compiling and executing

very simple programs that operate on arrays of data. The "language"

is a generic assembly language that represents many of the features

available in SIMD architectures, including saturated addition and

subtraction, and many arithmetic operations.

Update Information:

Update to 0.4.39

Topics%20covered

Topics Covered

security advisory critical issue buffer overflow Fedora orc update

Change Log

* Tue Jul 30 2024 Wim Taymans 0.4.39-1 - Update to 0.4.39 - Add patch for div255w fix on ppc64le * Thu Jul 18 2024 Fedora Release Engineering - 0.4.38-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild

References


[ 1 ] Bug #2300153 - CVE-2024-40897 orc: Stack-based buffer overflow vulnerability in ORC [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2300153

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-c7bb042d5b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: orc
Product: Fedora 40
Version: 0.4.39
Release: 1.fc40
URL:
Summary: The Oil Run-time Compiler

Topics%20covered

Topics Covered

security advisory critical issue buffer overflow Fedora orc update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here