Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
89
security advisoryfedorabuffer overflowFedora 40 Advisory 2024-86d287b270: Critical Editorconfig Buffer Overflow
Update to 0.12.7: fix pointer overflow in STRING_CAT; fix a few more stack buffer overflows.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-86d287b270 2024-04-19 21:20:20.797812 -------------------------------------------------------------------------------- Name : editorconfig Product : Fedora 40 Version : 0.12.7 Release : 1.fc40 URL : https://github.com/editorconfig/editorconfig-core-c Summary : Parser for EditorConfig files written in C Description : EditorConfig makes it easy to maintain the correct coding style when switching between different text editors and between different projects. The EditorConfig project maintains a file format and plugins for various text editors which allow this file format to be read and used by those editors. -------------------------------------------------------------------------------- Update Information: Update to 0.12.7: fix pointer overflow in STRING_CAT; fix a few more stack buffer overflows. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 3 2024 Benjamin A. Beasley - 0.12.7-1 - Update to 0.12.7 (close RHBZ#2272370) * Fri Mar 8 2024 Yaakov Selkowitz - 0.12.6-5 - Use bundled uthash in RHEL builds -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272370 - editorconfig-0.12.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272370 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-86d287b270' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the FedoraProject can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 19, 2024
•Critical
Fedora
89
security advisorysecurity updatefedoraFedora 39: FEDORA-2024-deddae25dd Critical: EditorConfig Stack Overflow Fix
Update to 0.12.7: fix pointer overflow in STRING_CAT; fix a few more stack buffer overflows.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-deddae25dd 2024-04-19 01:17:18.086513 -------------------------------------------------------------------------------- Name : editorconfig Product : Fedora 39 Version : 0.12.7 Release : 1.fc39 URL : https://github.com/editorconfig/editorconfig-core-c Summary : Parser for EditorConfig files written in C Description : EditorConfig makes it easy to maintain the correct coding style when switching between different text editors and between different projects. The EditorConfig project maintains a file format and plugins for various text editors which allow this file format to be read and used by those editors. -------------------------------------------------------------------------------- Update Information: Update to 0.12.7: fix pointer overflow in STRING_CAT; fix a few more stack buffer overflows. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 3 2024 Benjamin A. Beasley - 0.12.7-1 - Update to 0.12.7 (close RHBZ#2272370) * Fri Mar 8 2024 Yaakov Selkowitz - 0.12.6-5 - Use bundled uthash in RHEL builds * Wed Jan 24 2024 Fedora Release Engineering - 0.12.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 0.12.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2272370 - editorconfig-0.12.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=2272370 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-deddae25dd' at thecommand line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 19, 2024
•Critical
Fedora
89
security advisorymoderateupdateFedora 37 FEDORA-2023-6e5d4757df Moderate: Editorconfig Stack Write
Security fix for CVE-2023-0341: update to 0.12.6 (close RHBZ#2162811). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-6e5d4757df 2023-06-01 02:15:50.705009 --------------------------------------------------------------------------------Name : editorconfig Product : Fedora 37 Version : 0.12.6 Release : 1.fc37 URL : https://github.com/editorconfig/editorconfig-core-c Summary : Parser for EditorConfig files written in C Description : EditorConfig makes it easy to maintain the correct coding style when switching between different text editors and between different projects. The EditorConfig project maintains a file format and plugins for various text editors which allow this file format to be read and used by those editors. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2023-0341: update to 0.12.6 (close RHBZ#2162811) --------------------------------------------------------------------------------ChangeLog: * Sun Jan 22 2023 Benjamin A. Beasley - 0.12.6-1 - Update to 0.12.6 (close RHBZ#2162811) - Update License to SPDX - Document and/or unbundle all bundled libraries * Thu Jan 19 2023 Fedora Release Engineering - 0.12.5-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2193152 - CVE-2023-0341 editorconfig-core-c:arbitrary stack write https://bugzilla.redhat.com/show_bug.cgi?id=2193152 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-6e5d4757df' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora ProjectGPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Jun 01, 2023
•Important
Fedora
202
security advisorybuffer overflowimportantopenSUSE: 2023:0102-1 Important Buffer Overflow Fix for Editorconfig
An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for editorconfig-core-c ______________________________________________________________________________ Announcement ID: openSUSE-SU-2023:0102-1 Rating: important References: #1211032 Cross-References: CVE-2023-0341 CVSS scores: CVE-2023-0341 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for editorconfig-core-c fixes the following issues: Update to version 0.12.6: - CVE-2023-0341: Fixed a buffer overflow in ec_blob (boo#1211032) - Update property key, value length limits per spec change Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2023-102=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 i586 ppc64le s390x x86_64): editorconfig-0.12.6-bp154.2.3.1 libeditorconfig-devel-0.12.6-bp154.2.3.1 libeditorconfig0-0.12.6-bp154.2.3.1 - openSUSE Backports SLE-15-SP4 (aarch64_ilp32): libeditorconfig-devel-64bit-0.12.6-bp154.2.3.1 libeditorconfig0-64bit-0.12.6-bp154.2.3.1 - openSUSE Backports SLE-15-SP4 (x86_64): libeditorconfig-devel-32bit-0.12.6-bp154.2.3.1 libeditorconfig0-32bit-0.12.6-bp154.2.3.1 References: https://www.suse.com/security/cve/CVE-2023-0341.html https://bugzilla.suse.com/1211032 . The latest release for editorconfig-core-c addresses a significant buffer overflow vulnerability present in openSUSE Backports. Make sure to install immediately!. openSUSE Updates, Security Fixes,Software Patch, Editorconfig Security, Buffer Overflow Fix. . Severity: Important. LinuxSecurity.com Team
May 04, 2023
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!