Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
89
security advisorydenial of servicefedoraFedora 38: 2024-91dab41dfa Critical: Clojure DoS Security Fix
Security fix for CVE-2024-22871 Update to upstream release 1.11.2. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-91dab41dfa 2024-03-24 01:35:11.754500 -------------------------------------------------------------------------------- Name : clojure Product : Fedora 38 Version : 1.11.2 Release : 1.fc38 URL : https://clojure.org/ Summary : A dynamic programming language that targets the Java Virtual Machine Description : Clojure is a dynamic programming language that targets the Java Virtual Machine. It is designed to be a general-purpose language, combining the approachability and interactive development of a scripting language with an efficient and robust infrastructure for multithreaded programming. Clojure is a compiled language - it compiles directly to JVM bytecode, yet remains completely dynamic. Every feature supported by Clojure is supported at runtime. Clojure provides easy access to the Java frameworks, with optional type hints and type inference, to ensure that calls to Java can avoid reflection. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2024-22871 Update to upstream release 1.11.2 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 15 2024 Markku Korkeala - 1:1.11.2-1 - Update to upstream release 1.11.2 * Wed Jan 24 2024 Fedora Release Engineering - 1:1.11.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 1:1.11.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Jul 19 2023 Fedora Release Engineering - 1:1.11.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266785 - CVE-2024-22871 clojure:denial of service (DoS) via the clojure.core$partial$fn__5920 function. https://bugzilla.redhat.com/show_bug.cgi?id=2266785 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-91dab41dfa' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 24, 2024
•Critical
Fedora
89
security advisoryupdateFedoraFedora 39: Advisory FEDORA-2024-270cd506bb Critical: Clojure DoS Issue
Security fix for CVE-2024-22871 Update to upstream release 1.11.2. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-270cd506bb 2024-03-24 01:05:50.706295 -------------------------------------------------------------------------------- Name : clojure Product : Fedora 39 Version : 1.11.2 Release : 1.fc39 URL : https://clojure.org/ Summary : A dynamic programming language that targets the Java Virtual Machine Description : Clojure is a dynamic programming language that targets the Java Virtual Machine. It is designed to be a general-purpose language, combining the approachability and interactive development of a scripting language with an efficient and robust infrastructure for multithreaded programming. Clojure is a compiled language - it compiles directly to JVM bytecode, yet remains completely dynamic. Every feature supported by Clojure is supported at runtime. Clojure provides easy access to the Java frameworks, with optional type hints and type inference, to ensure that calls to Java can avoid reflection. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2024-22871 Update to upstream release 1.11.2 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 15 2024 Markku Korkeala - 1:1.11.2-1 - Update to upstream release 1.11.2 * Wed Jan 24 2024 Fedora Release Engineering - 1:1.11.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 1:1.11.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266785 - CVE-2024-22871 clojure: denial of service (DoS) via the clojure.core$partial$fn__5920 function. https://bugzilla.redhat.com/show_bug.cgi?id=2266785 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-270cd506bb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 24, 2024
•Critical
Fedora
89
security advisoryupdateFedoraFedora 40: FEDORA-2024-f7745a5990 Moderate: Clojure DoS Threat
Security fix for CVE-2024-22871 Update to upstream release 1.11.2. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-f7745a5990 2024-03-23 00:20:56.401933 -------------------------------------------------------------------------------- Name : clojure Product : Fedora 40 Version : 1.11.2 Release : 1.fc40 URL : https://clojure.org/ Summary : A dynamic programming language that targets the Java Virtual Machine Description : Clojure is a dynamic programming language that targets the Java Virtual Machine. It is designed to be a general-purpose language, combining the approachability and interactive development of a scripting language with an efficient and robust infrastructure for multithreaded programming. Clojure is a compiled language - it compiles directly to JVM bytecode, yet remains completely dynamic. Every feature supported by Clojure is supported at runtime. Clojure provides easy access to the Java frameworks, with optional type hints and type inference, to ensure that calls to Java can avoid reflection. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2024-22871 Update to upstream release 1.11.2 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 15 2024 Markku Korkeala - 1:1.11.2-1 - Update to upstream release 1.11.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2266785 - CVE-2024-22871 clojure: denial of service (DoS) via the clojure.core$partial$fn__5920 function. https://bugzilla.redhat.com/show_bug.cgi?id=2266785 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-f7745a5990' at the command line. For more information, refer to thednf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 23, 2024
•Important
Fedora
89
security advisoryhigh severityfedoraFedora 40: FEDORA-2024-129d8ca6fc High: Clojure Spec Alpha Security Fix
Change for system JDK from 17 to 21. upstream security release 122.0.6261.94 High CVE-2024-1938: Type Confusion in V8 High CVE-2024-1939: Type Confusion in V8 fixed bug with requires. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-129d8ca6fc 2024-03-07 22:24:39.963937 -------------------------------------------------------------------------------- Name : clojure-spec-alpha Product : Fedora 40 Version : 0.3.218 Release : 8.fc40 URL : https://github.com/clojure/spec.alpha/ Summary : Spec is a Clojure library to describe the structure of data and functions Description : Spec is a Clojure library to describe the structure of data and functions. Specs can be used to validate data, conform (destructure) data, explain invalid data, generate examples that conform to the specs, and automatically use generative testing to test functions. -------------------------------------------------------------------------------- Update Information: Change for system JDK from 17 to 21. upstream security release 122.0.6261.94 High CVE-2024-1938: Type Confusion in V8 High CVE-2024-1939: Type Confusion in V8 fixed bug with requires Automatic update for lucene-9.9.2-1.fc40. bump java source/target to 1.8, fixes 2266639 -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 2 2024 Jiri Vanek - 1:0.3.218-8 - Rebuilt for java-21-openjdk as system jdk -------------------------------------------------------------------------------- References: [ 1 ] Bug #2123726 - consoleImageViewer crashes at start https://bugzilla.redhat.com/show_bug.cgi?id=2123726 [ 2 ] Bug #2261062 - directory-maven-plugin: FTBFS in Fedora rawhide/f40 https://bugzilla.redhat.com/show_bug.cgi?id=2261062 [ 3 ] Bug #2266639 - directory-maven-plugin fails to build with java-21-openjdk https://bugzilla.redhat.com/show_bug.cgi?id=2266639 [ 4 ] Bug#2266934 - CVE-2024-1938 chromium: type confusion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2266934 [ 5 ] Bug #2266937 - CVE-2024-1939 chromium: type confusion [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2266937 [ 6 ] Bug #2267486 - Include Java 21 as system Java Change in Fedora 40 Beta https://bugzilla.redhat.com/show_bug.cgi?id=2267486 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-129d8ca6fc' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Mar 07, 2024
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!