Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: 2024-ce2936b568 Moderate: Rust-Erdtree DOS and UB Issues

fedora
Calendar Grey May 26, 2024
Dist Fedora Esm H88
Fedora Alert Notification FEDORA-2024-ed47f07972 boosts rust-erdtree with improved diagnostic tools and security patches on June 10.
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries)

Summary

Erdtree (erd) is a cross-platform, multi-threaded, and general purpose

filesystem and disk usage utility that is aware of .gitignore and hidden

file rules.

Update Information:

This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority security and / or safety fixes in crate dependencies that had not yet been handled via a separate (targeted) rebuild: h2 v0.3.26+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0332.html glib v0.19.4+ and backports (UB): core/pull/1343 hashbrown v0.14.5+ (UB): https://github.com/rust-lang/hashbrown/pull/511 rustls v0.22.4+, v0.21.11+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0336.html

Topics%20covered

Topics Covered

security advisory update Fedora software fix denial-of-service Rust applications toolchain rebuild

Change Log

* Thu May 23 2024 Fabio Valentini - 3.1.2-4 - Rebuild with Rust 1.78 to fix incomplete debuginfo and backtraces

References

Fedora Update Notification FEDORA-2024-ce2936b568 2024-05-26 01:25:15.719720 Name : rust-erdtree Product : Fedora 40 Version : 3.1.2 Release : 4.fc40 URL : Summary : Cross-platform multi-threaded filesystem and disk usage analysis tool Description : Erdtree (erd) is a cross-platform, multi-threaded, and general purpose filesystem and disk usage utility that is aware of .gitignore and hidden file rules.

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ce2936b568' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: rust-erdtree
Product: Fedora 40
Version: 3.1.2
Release: 4.fc40
URL: Summary : Cross-platform multi-threaded filesystem and disk usage analysis tool

Topics%20covered

Topics Covered

security advisory update Fedora software fix denial-of-service Rust applications toolchain rebuild

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here