Stay Secure with the Latest Linux Advisories

security advisorycriticalFedora

Fedora 37: FEDORA-2023-5029b92850 Critical Pack Fix for Stream Issues

fix for CVE-2023-39325. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-5029b92850 2023-11-17 01:10:00.161797 -------------------------------------------------------------------------------- Name : pack Product : Fedora 37 Version : 0.32.0 Release : 1.fc37 URL : https://github.com/buildpacks/pack Summary : Convert code into runnable images Description : pack is a CLI implementation of the Platform Interface Specification for Cloud Native Buildpacks. -------------------------------------------------------------------------------- Update Information: fix for CVE-2023-39325 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 8 2023 RH Container Bot - 0.32.0-1 - auto bump to v0.32.0 * Thu Jul 20 2023 Fedora Release Engineering - 0.30.0~pre2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2248399 - pack: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2248399 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-5029b92850' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe sendan email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam, report it: . Debian 12 security alert for packages related to CVE-2023-28410 addressing vulnerabilities in systemd affecting device management.. Fedora Pack Update, CVE 2023-39325 Fix, Fedora Security Advisory. . Severity: Critical. LinuxSecurity.com Team

Nov 17, 2023 •Critical Fedora