Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 41: FEDORA-2024-aa246ab1a3 critical: rust-rbspy memory issues

fedora
Calendar Grey December 10, 2024
Dist Fedora Esm H88
Updating the CPU profiler for Ruby in Fedora to mitigate RUSTSEC-2024-0400 vulnerabilities. Addressing potential security concerns to ensure robust performance.
Sampling CPU profiler for Ruby.

Summary

Sampling CPU profiler for Ruby.

Update Information:

Rebuild affected applications with ruzstd v0.7.3 to address RUSTSEC-2024-0400.

Topics%20covered

Topics Covered

security advisory fedora update information memory read rust cpu profiler ruzstd

Change Log

* Sun Dec 1 2024 Fabio Valentini - 0.24.0-3 - Rebuild for ruzstd 0.7.3 (RUSTSEC-2024-0400)

References


[ 1 ] Bug #2329482 - rust-ruzstd: `ruzstd` uninit and out-of-bounds memory reads [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2329482

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-aa246ab1a3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: rust-rbspy
Product: Fedora 41
Version: 0.24.0
Release: 3.fc41
URL: https://crates.io/crates/rbspy
Summary: Sampling CPU profiler for Ruby

Topics%20covered

Topics Covered

security advisory fedora update information memory read rust cpu profiler ruzstd

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here