Stay Vigilant with Timely Linux Security Advisories

security advisoryFedoraupdate information

Fedora 42: rizin 2025-5b272a55b8 critical: update tree-sitter and emacs

Update to tree-sitter 0.25.2 and emacs 30.1.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-5b272a55b8 2025-03-10 16:13:35.332619+00:00 -------------------------------------------------------------------------------- Name : rizin Product : Fedora 42 Version : 0.7.4 Release : 8.fc42 URL : https://rizin.re/ Summary : UNIX-like reverse engineering framework and command-line tool-set Description : Rizin is a free and open-source Reverse Engineering framework, providing a complete binary analysis experience with features like Disassembler, Hexadecimal editor, Emulation, Binary inspection, Debugger, and more. Rizin is a fork of radare2 with a focus on usability, working features and code cleanliness. -------------------------------------------------------------------------------- Update Information: Update to tree-sitter 0.25.2 and emacs 30.1. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 19 2025 Peter Oliver - 0.7.4-5 - Rebuild against tree-sitter-0.25.2-3.fc43 * Mon Feb 3 2025 Peter Oliver - 0.7.4-4 - Rebuild against tree-sitter-0.25.1-6.fc42 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2343305 - tree-sitter-0.25.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2343305 [ 2 ] Bug #2347206 - emacs-30.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2347206 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-5b272a55b8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used bythe Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Upgrade rizin with the latest tree-sitter and emacs versions on Fedora 42, boosting capabilities for reverse engineering utilities.. Fedora 42, rizin update, tree-sitter emacs, reverse engineering, security advisory. . Severity: Critical. LinuxSecurity.com Team

Mar 10, 2025 •Critical Fedora

security advisoryupdateFedora

Fedora 40: 2024-d4d1e89e61 moderate: radare2 command injection

The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and function levels.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-d4d1e89e61 2024-12-12 02:29:32.892756+00:00 -------------------------------------------------------------------------------- Name : radare2 Product : Fedora 40 Version : 5.9.8 Release : 4.fc40 URL : https://radare.org/ Summary : The reverse engineering framework Description : The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and function levels. -------------------------------------------------------------------------------- Update Information: Bump radare2 to 5.9.8, iaito to 5.9.9, fixes CVE-2024-11858 -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 30 2024 Michal Ambroz - 5.9.8-4 - fix epel build * Mon Nov 25 2024 Michal Ambroz - 5.9.8-2 - documentation of embedded quickjs-ng library * Fri Nov 22 2024 Michal Ambroz - 5.9.8-1 - bump to 5.9.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2313891 - iaito: fails to install from epel9 https://bugzilla.redhat.com/show_bug.cgi?id=2313891 [ 2 ] Bug #2327286 - iaito-5.9.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=2327286 [ 3 ] Bug #2327308 - radare2-5.9.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=2327308 [ 4 ] Bug #2329104 - CVE-2024-11858 radare2:Command Injection via Pebble Application Files in Radare2 [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2329104 [ 5 ] Bug #2329105 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2329105 [ 6 ] Bug #2329107 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2329107 [ 7 ] Bug #2329108 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2329108 [ 8 ] Bug #2329622 - F41FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2329622 [ 9 ] Bug #2329623 - F40FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2329623 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-d4d1e89e61' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it:https://pagure.io/fedora-infrastructure/new_issue . This Ubuntu patch resolves a vulnerability regarding buffer overflow in gdb, bolstering security and offering enhanced performance.. radare2, Fedora Update, command injection, reverse engineering, multi-platform. . LinuxSecurity.com Team

Dec 12, 2024 Fedora

security advisoryFedoracommand injection

Fedora 40: 2024-d4d1e89e61 critical: iaito command injection fix

iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse engineers.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-d4d1e89e61 2024-12-12 02:29:32.892756+00:00 -------------------------------------------------------------------------------- Name : iaito Product : Fedora 40 Version : 5.9.9 Release : 2.fc40 URL : https://radare.org/n/iaito.html Summary : GUI for radare2 reverse engineering framework Description : iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse engineers. Focus on supporting latest version of radare2. Recommend the use of system installed libraries/radare2. Closer integration between r2 and the UI. -------------------------------------------------------------------------------- Update Information: Bump radare2 to 5.9.8, iaito to 5.9.9, fixes CVE-2024-11858 -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 30 2024 Michal Ambroz - 5.9.9-2 - iaito rebuild * Mon Nov 25 2024 Michal Ambroz - 5.9.9-1 - bump to 5.9.9 * Thu Oct 31 2024 Michal Ambroz - 5.9.6-2 - fix epel8 build -------------------------------------------------------------------------------- References: [ 1 ] Bug #2313891 - iaito: fails to install from epel9 https://bugzilla.redhat.com/show_bug.cgi?id=2313891 [ 2 ] Bug #2327286 - iaito-5.9.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=2327286 [ 3 ] Bug #2327308 -radare2-5.9.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=2327308 [ 4 ] Bug #2329104 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2329104 [ 5 ] Bug #2329105 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [epel-9] https://bugzilla.redhat.com/show_bug.cgi?id=2329105 [ 6 ] Bug #2329107 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2329107 [ 7 ] Bug #2329108 - CVE-2024-11858 radare2: Command Injection via Pebble Application Files in Radare2 [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2329108 [ 8 ] Bug #2329622 - F41FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2329622 [ 9 ] Bug #2329623 - F40FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2329623 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-d4d1e89e61' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives:https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Important patch released for iaito on Fedora 40 addressing command injection vulnerability in radare2. Protect your environment effectively.. iaito update, radare2 security, Fedora advisory, command injection fix, FOSS reverse engineering. . Severity: Critical. LinuxSecurity.com Team

Dec 12, 2024 •Critical Fedora

security advisoryupdatereverse engineering

Fedora 40: Update for radare2 5.9.4 Moderate: Out of Bounds Read

Bump to version 5.9.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-a562addefa 2024-08-23 01:48:47.285005 -------------------------------------------------------------------------------- Name : radare2 Product : Fedora 40 Version : 5.9.4 Release : 1.fc40 URL : https://radare.org/ Summary : The reverse engineering framework Description : The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and function levels. -------------------------------------------------------------------------------- Update Information: Bump to version 5.9.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 12 2024 Michal Ambroz - 5.9.4-1 - bump to 5.9.4 * Fri Jul 19 2024 Fedora Release Engineering - 5.9.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Wed May 22 2024 Michal Ambroz - 5.9.2-1 - bump to 5.9.2 * Sat Apr 20 2024 Michal Ambroz 5.9.0-1 - bump to 5.9.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2251066 - TRIAGE CVE-2023-47016 radare2: out of bounds read in xnu kernelcache [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2251066 [ 2 ] Bug #2303807 - iaito-5.9.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2303807 [ 3 ] Bug #2303875 - radare2-5.9.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2303875 [ 4 ] Bug #2304300 - F40FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2304300 [ 5 ] Bug #2304301 - F39FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2304301 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-a562addefa' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue . The most recent radare2 release from Fedora (version 5.9.4) tackles vulnerabilities such as out-of-bounds reads. Find out more.. Fedora 40, radare2, reverse engineering, software updates. . LinuxSecurity.com Team

Aug 23, 2024 Fedora

security advisoryFedoraupdate information

Fedora 39 radare2 Updates: Critical Heap Buffer Overflows

Bump to version 5.9.4. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-3667e29b88 2024-08-23 01:23:04.730519 -------------------------------------------------------------------------------- Name : radare2 Product : Fedora 39 Version : 5.9.4 Release : 1.fc39 URL : https://radare.org/ Summary : The reverse engineering framework Description : The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and function levels. -------------------------------------------------------------------------------- Update Information: Bump to version 5.9.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 12 2024 Michal Ambroz - 5.9.4-1 - bump to 5.9.4 * Fri Jul 19 2024 Fedora Release Engineering - 5.9.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild * Wed May 22 2024 Michal Ambroz - 5.9.2-1 - bump to 5.9.2 * Sat Apr 20 2024 Michal Ambroz 5.9.0-1 - bump to 5.9.0 * Fri Jan 26 2024 Fedora Release Engineering - 5.8.8-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering - 5.8.8-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Thu Oct 26 2023 Michal Ambroz 5.8.8-3 - rebuild F40+ with capstone 5.0.1+ * Thu Oct 26 2023 Michal Ambroz 5.8.8-2 - cherrypick from upstream master patches for known vulnerabilities: - CVE-2023-4322 - heap-buffer-overflow in the brainfuck dissassembler - CVE-2023-5686 - heap-buffer-overflow in /radare2/shlr/java/code.c -------------------------------------------------------------------------------- References: [ 1 ] Bug #2251066 - TRIAGE CVE-2023-47016radare2: out of bounds read in xnu kernelcache [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2251066 [ 2 ] Bug #2303807 - iaito-5.9.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2303807 [ 3 ] Bug #2303875 - radare2-5.9.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2303875 [ 4 ] Bug #2304300 - F40FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2304300 [ 5 ] Bug #2304301 - F39FailsToInstall: iaito https://bugzilla.redhat.com/show_bug.cgi?id=2304301 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-3667e29b88' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: . Recent Radare2 patches for Fedora address critical vulnerabilities involving several heap overflow issues. It's essential to keep your system protected.. Fedora updates, radare2 security, heap overflow fixes, reverse engineering framework, software update. . Severity: Critical. LinuxSecurity.com Team

Aug 23, 2024 •Critical Fedora

security advisoryupdateFedora

Fedora 38: RADARE2 5.8.6 Moderate: Reverse Engineering Framework

Bump to 5.8.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-5d5aa8b27a 2023-06-18 01:29:01.914080 --------------------------------------------------------------------------------Name : radare2 Product : Fedora 38 Version : 5.8.6 Release : 1.fc38 URL : https://radare.org/ Summary : The reverse engineering framework Description : The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and function levels. --------------------------------------------------------------------------------Update Information: Bump to 5.8.6 --------------------------------------------------------------------------------ChangeLog: * Tue May 23 2023 Michal Ambroz 5.8.6-1 - bump to 5.8.6 * Sat Mar 25 2023 Michal Ambroz 5.8.5-0.3 - 5.8.5 rebuild from git, patched for segfault * Wed Mar 22 2023 Michal Ambroz 5.8.4-2 - patch for segfault in sdb_hash * Thu Mar 16 2023 Michal Ambroz 5.8.4-1 - bump to 5.8.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2157016 - CVE-2022-4843 radare2: Fix null deref in io.bank [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2157016 [ 2 ] Bug #2170036 - syscall detection is broken https://bugzilla.redhat.com/show_bug.cgi?id=2170036 [ 3 ] Bug #2178851 - radare2-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2178851 [ 4 ] Bug #2179047 - iaito-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179047 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-5d5aa8b27a' atthe command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Discover the newest improvements for radare2 5.8.6 in Fedora 38, boosting reverse engineering tools with innovative functionalities.. Radare2 Security Advisory, Fedora Update, Reverse Engineering Fix. . LinuxSecurity.com Team

Jun 18, 2023 Fedora

security advisoryupdateFedora

Fedora 38 Iaito 5.8.6 Update: Enhancements in Reverse Engineering

Bump to 5.8.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-5d5aa8b27a 2023-06-18 01:29:01.914080 --------------------------------------------------------------------------------Name : iaito Product : Fedora 38 Version : 5.8.6 Release : 1.fc38 URL : https://radare.org/n/iaito.html Summary : GUI for radare2 reverse engineering framework Description : iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse engineers. Focus on supporting latest version of radare2. Recommend the use of system installed libraries/radare2. Closer integration between r2 and the UI. --------------------------------------------------------------------------------Update Information: Bump to 5.8.6 --------------------------------------------------------------------------------ChangeLog: * Mon Apr 10 2023 Michal Ambroz - 5.8.4-2 - rebuild with fixed radare2 5.8.5 * Wed Mar 29 2023 Michal Ambroz - 5.8.4-1 - bump to 5.8.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2157016 - CVE-2022-4843 radare2: Fix null deref in io.bank [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2157016 [ 2 ] Bug #2170036 - syscall detection is broken https://bugzilla.redhat.com/show_bug.cgi?id=2170036 [ 3 ] Bug #2178851 - radare2-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2178851 [ 4 ] Bug #2179047 - iaito-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179047 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisoryFEDORA-2023-5d5aa8b27a' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Explore the improvements introduced by Fedora 38's iaito 5.8.6, enhancing radare2's reverse engineering features and elevating the user interface experience. Fedora 38, iaito software, radare2 enhancement, FOSS reverse engineering. . LinuxSecurity.com Team

Jun 18, 2023 Fedora

security advisoryFedoracritical update

Fedora 37: FEDORA-2023-ded3d48ebc Critical radare2 Update Released

Bump to 5.8.6. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2023-ded3d48ebc 2023-06-18 01:13:43.952541 --------------------------------------------------------------------------------Name : radare2 Product : Fedora 37 Version : 5.8.6 Release : 1.fc37 URL : https://radare.org/ Summary : The reverse engineering framework Description : The radare2 is a reverse-engineering framework that is multi-architecture, multi-platform, and highly scriptable. Radare2 provides a hexadecimal editor, wrapped I/O, file system support, debugger support, diffing between two functions or binaries, and code analysis at opcode, basic block, and function levels. --------------------------------------------------------------------------------Update Information: Bump to 5.8.6 --------------------------------------------------------------------------------ChangeLog: * Tue May 23 2023 Michal Ambroz 5.8.6-1 - bump to 5.8.6 * Sat Mar 25 2023 Michal Ambroz 5.8.5-0.3 - 5.8.5 rebuild from git, patched for segfault * Wed Mar 22 2023 Michal Ambroz 5.8.4-2 - patch for segfault in sdb_hash * Thu Mar 16 2023 Michal Ambroz 5.8.4-1 - bump to 5.8.4 --------------------------------------------------------------------------------References: [ 1 ] Bug #2157016 - CVE-2022-4843 radare2: Fix null deref in io.bank [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2157016 [ 2 ] Bug #2170036 - syscall detection is broken https://bugzilla.redhat.com/show_bug.cgi?id=2170036 [ 3 ] Bug #2178851 - radare2-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2178851 [ 4 ] Bug #2179047 - iaito-5.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=2179047 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-ded3d48ebc' atthe command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Explore the new radare2 5.8.6 release for Fedora 37, boosting reverse engineering tools. Keep yourself updated!. radare2 Update,Fedora 37,reverse engineering tools. . Severity: Critical. LinuxSecurity.com Team

Jun 18, 2023 •Critical Fedora

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Fedora 42: rizin 2025-5b272a55b8 critical: update tree-sitter and emacs

Fedora 40: 2024-d4d1e89e61 moderate: radare2 command injection

Fedora 40: 2024-d4d1e89e61 critical: iaito command injection fix

Fedora 40: Update for radare2 5.9.4 Moderate: Out of Bounds Read

Fedora 39 radare2 Updates: Critical Heap Buffer Overflows

Fedora 38: RADARE2 5.8.6 Moderate: Reverse Engineering Framework

Fedora 38 Iaito 5.8.6 Update: Enhancements in Reverse Engineering

Fedora 37: FEDORA-2023-ded3d48ebc Critical radare2 Update Released

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!