Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Fedora 42 rust-git-interactive-rebase-tool double free issue in 2025

fedora
Calendar Grey June 18, 2025
Dist Fedora Esm H88
A severe security flaw has been discovered in Fedora 42's Rust Git Interactive Rebase Tool, risking application crashes or code execution.
Rebuild for CVE-2024-12224, CVE-2025-4574

Summary

Full-featured terminal-based sequence editor for Git interactive rebase.

Update Information:

Rebuild for CVE-2024-12224, CVE-2025-4574

Change Log

* Sun Jun 8 2025 Benjamin Gilbert - 2.4.1-9 - Rebuild for CVE-2024-12224, CVE-2025-4574 (rhbz#2370599, rhbz#2366573)

References


[ 1 ] Bug #2366573 - CVE-2025-4574 rust-git-interactive-rebase-tool: crossbeam-channel Vulnerable to Double Free on Drop [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2366573 [ 2 ] Bug #2370599 - CVE-2024-12224 rust-git-interactive-rebase-tool: idna accepts Punycode labels that do not produce any non-ASCII when decoded [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2370599

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-da9b58be96' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: rust-git-interactive-rebase-tool
Product: Fedora 42
Version: 2.4.1
Release: 9.fc42
Summary: Full-featured terminal-based sequence editor for Git interactive rebase

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here