Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Fedora 44 rust-sequoia-chameleon-gnupg Major Buffer Overflow CVE-2026-33056

fedora
Calendar Grey March 29, 2026
Dist Fedora Esm H88
Fedora Rust-Sequoia update resolves a serious buffer overflow vulnerability in version 2026-29e1155702 ensuring enhanced security for users
Rebuild rust-sequoia-chameleon-gnupg with rust-tar 0.4.45 for CVE-2026-33056

Summary

Sequoia's reimplementation of the GnuPG interface.

Update Information:

Rebuild rust-sequoia-chameleon-gnupg with rust-tar 0.4.45 for CVE-2026-33056. Update rust-pty-process to 0.5.3, and adjust the dev-dependency in rust-sequoia- chameleon-gnupg to allow it.

Change Log

* Mon Mar 23 2026 Benjamin A. Beasley - 0.13.1-11 - Rebuilt with rust-tar 0.4.45 for CVE-2026-33056 * Tue Mar 17 2026 Benjamin A. Beasley - 0.13.1-10 - Update pty-process dev-dependency from v0.4 to v0.5

References


[ 1 ] Bug #2344560 - rust-pty-process-0.5.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=2344560

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-29e1155702' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: rust-sequoia-chameleon-gnupg
Product: Fedora 44
Version: 0.13.1
Release: 11.fc44
Summary: Sequoia's reimplementation of the GnuPG interface

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here