Stay Secure with the Latest Linux Advisories

security advisoryFedoraDoS

Fedora 35: 2022-47a86f6258 Critical: Fapolicyd DoS Threat Fix

Rebase to v1.1.2 * fixed CVE-2022-1117. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-47a86f6258 2022-06-03 03:33:19.589370 --------------------------------------------------------------------------------Name : fapolicyd Product : Fedora 35 Version : 1.1.2 Release : 1.fc35 URL : https://people.redhat.com/sgrubb/fapolicyd/ Summary : Application Whitelisting Daemon Description : Fapolicyd (File Access Policy Daemon) implements application whitelisting to decide file access rights. Applications that are known via a reputation source are allowed access while unknown applications are not. The daemon makes use of the kernel's fanotify interface to determine file access rights. --------------------------------------------------------------------------------Update Information: Rebase to v1.1.2 * fixed CVE-2022-1117 --------------------------------------------------------------------------------ChangeLog: * Wed May 25 2022 Radovan Sroka - 1.1.2-1 - rebase to v1.1.2 - fixed CVE-2022-1117 Resolves: rhbz#2089692 --------------------------------------------------------------------------------References: [ 1 ] Bug #2089692 - CVE-2022-1117 fapolicyd: fapolicyd wrongly prepares ld.so path [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2089692 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-47a86f6258' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Fedora 36 fapolicyd upgrade launched, addressing CVE-2023-2222 flaw and enhancing app whitelisting protection.. Fedora Update,fapolicyd,application whitelisting. . Severity: Critical. LinuxSecurity.com Team

Jun 02, 2022 •Critical Fedora