Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 4 articles for you...
89
security advisoryFedoratool updateFedora 39: FEDORA-2024-40ee18b2e7 Moderate: Rust-Erdtree Denial-of-Service
This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-40ee18b2e7 2024-06-02 03:36:56.060441 -------------------------------------------------------------------------------- Name : rust-erdtree Product : Fedora 39 Version : 3.1.2 Release : 4.fc39 URL : Summary : Cross-platform multi-threaded filesystem and disk usage analysis tool Description : Erdtree (erd) is a cross-platform, multi-threaded, and general purpose filesystem and disk usage utility that is aware of .gitignore and hidden file rules. -------------------------------------------------------------------------------- Update Information: This update contains builds from a mini-mass-rebuild for Rust applications (and some C-style libraries). Rebuilding with the Rust 1.78 toolchain should fix incomplete debug information for the Rust standard library (and the resulting low-quality stack traces). Additionally, builds will have picked up fixes for some minor low-priority security and / or safety fixes in crate dependencies that had not yet been handled via a separate (targeted) rebuild: h2 v0.3.26+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0332.html glib v0.19.4+ and backports (UB): core/pull/1343 hashbrown v0.14.5+ (UB): https://github.com/rust-lang/hashbrown/pull/511 rustls v0.22.4+, v0.21.11+ (denial-of-service): https://rustsec.org/advisories/RUSTSEC-2024-0336.html -------------------------------------------------------------------------------- ChangeLog: * Thu May 23 2024 Fabio Valentini - 3.1.2-4 - Rebuild with Rust 1.78 to fix incomplete debuginfo andbacktraces * Fri Jan 26 2024 Fedora Release Engineering - 3.1.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-40ee18b2e7' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jun 02, 2024
Fedora
98
security advisorymoderateRed HatRed Hat: RHSA-2022:9047-01 Moderate: Migration Toolkit for Containers
The Migration Toolkit for Containers (MTC) 1.7.6 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Migration Toolkit for Containers (MTC) 1.7.6 security and bug fix update Advisory ID: RHSA-2022:9047-01 Product: Red Hat Migration Toolkit Advisory URL: https://access.redhat.com/errata/RHSA-2022:9047 Issue date: 2022-12-15 CVE Names: CVE-2016-3709 CVE-2020-28851 CVE-2020-28852 CVE-2020-35525 CVE-2020-35527 CVE-2022-0561 CVE-2022-0562 CVE-2022-0865 CVE-2022-0891 CVE-2022-0908 CVE-2022-0909 CVE-2022-0924 CVE-2022-1122 CVE-2022-1304 CVE-2022-1355 CVE-2022-1705 CVE-2022-1962 CVE-2022-2509 CVE-2022-3515 CVE-2022-22624 CVE-2022-22628 CVE-2022-22629 CVE-2022-22662 CVE-2022-22844 CVE-2022-25308 CVE-2022-25309 CVE-2022-25310 CVE-2022-26700 CVE-2022-26709 CVE-2022-26710 CVE-2022-26716 CVE-2022-26717 CVE-2022-26719 CVE-2022-27404 CVE-2022-27405 CVE-2022-27406 CVE-2022-27664 CVE-2022-28131 CVE-2022-30293 CVE-2022-30629 CVE-2022-30630 CVE-2022-30632 CVE-2022-30633 CVE-2022-30635 CVE-2022-32148 CVE-2022-32189 CVE-2022-37434 CVE-2022-42898 ==================================================================== 1. Summary: The Migration Toolkit for Containers (MTC) 1.7.6 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API. Security Fix(es) from Bugzilla: * golang: net/http: improper sanitization of Transfer-Encoding header (CVE-2022-1705) * golang: go/parser: stack exhaustion in all Parse* functions (CVE-2022-1962) * golang: encoding/xml: stack exhaustion in Decoder.Skip (CVE-2022-28131) * golang: io/fs: stack exhaustion in Glob (CVE-2022-30630) * golang: path/filepath: stack exhaustion in Glob (CVE-2022-30632) * golang: encoding/xml: stack exhaustion in Unmarshal (CVE-2022-30633) * golang: encoding/gob: stack exhaustion in Decoder.Decode (CVE-2022-30635) * golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (CVE-2022-32148) * golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For details on how to install and use MTC, refer to: https://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/migration_toolkit_for_containers/installing-mtc 4. Bugs fixed (https://bugzilla.redhat.com/): 2092793 - CVE-2022-30629 golang: crypto/tls: session tickets lack random ticket_age_add 2107371 - CVE-2022-30630 golang: io/fs: stack exhaustion in Glob 2107374 - CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header 2107376 - CVE-2022-1962 golang: go/parser: stack exhaustion in all Parse* functions 2107383 - CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working 2107386 - CVE-2022-30632 golang: path/filepath: stackexhaustion in Glob 2107388 - CVE-2022-30635 golang: encoding/gob: stack exhaustion in Decoder.Decode 2107390 - CVE-2022-28131 golang: encoding/xml: stack exhaustion in Decoder.Skip 2107392 - CVE-2022-30633 golang: encoding/xml: stack exhaustion in Unmarshal 2132957 - Migration fails at UnQuiesceDestApplications step in OCP 4.12 2137304 - Location for host cluster is missing in the UI 2140208 - When editing a MigHook in the UI, the page may fail to reload 2143628 - Unable to create Storage Class Conversion plan due to missing cronjob error in OCP 4.12 2143872 - Namespaces page in web console stuck in loading phase 2149920 - Migration fails at prebackupHooks step 5. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): MIG-1240 - Implement proposed changes for DVM support with PSAs in 4.12 6.References: https://access.redhat.com/security/cve/CVE-2016-3709 https://access.redhat.com/security/cve/CVE-2020-28851 https://access.redhat.com/security/cve/CVE-2020-28852 https://access.redhat.com/security/cve/CVE-2020-35525 https://access.redhat.com/security/cve/CVE-2020-35527 https://access.redhat.com/security/cve/CVE-2022-0561 https://access.redhat.com/security/cve/CVE-2022-0562 https://access.redhat.com/security/cve/CVE-2022-0865 https://access.redhat.com/security/cve/CVE-2022-0891 https://access.redhat.com/security/cve/CVE-2022-0908 https://access.redhat.com/security/cve/CVE-2022-0909 https://access.redhat.com/security/cve/CVE-2022-0924 https://access.redhat.com/security/cve/CVE-2022-1122 https://access.redhat.com/security/cve/CVE-2022-1304 https://access.redhat.com/security/cve/CVE-2022-1355 https://access.redhat.com/security/cve/CVE-2022-1705 https://access.redhat.com/security/cve/CVE-2022-1962 https://access.redhat.com/security/cve/CVE-2022-2509 https://access.redhat.com/security/cve/CVE-2022-3515 https://access.redhat.com/security/cve/CVE-2022-22624 https://access.redhat.com/security/cve/CVE-2022-22628 https://access.redhat.com/security/cve/CVE-2022-22629 https://access.redhat.com/security/cve/CVE-2022-22662 https://access.redhat.com/security/cve/CVE-2022-22844 https://access.redhat.com/security/cve/CVE-2022-25308 https://access.redhat.com/security/cve/CVE-2022-25309 https://access.redhat.com/security/cve/CVE-2022-25310 https://access.redhat.com/security/cve/CVE-2022-26700 https://access.redhat.com/security/cve/CVE-2022-26709 https://access.redhat.com/security/cve/CVE-2022-26710 https://access.redhat.com/security/cve/CVE-2022-26716 https://access.redhat.com/security/cve/CVE-2022-26717 https://access.redhat.com/security/cve/CVE-2022-26719 https://access.redhat.com/security/cve/CVE-2022-27404 https://access.redhat.com/security/cve/CVE-2022-27405 https://access.redhat.com/security/cve/CVE-2022-27406 https://access.redhat.com/security/cve/CVE-2022-27664 https://access.redhat.com/security/cve/CVE-2022-28131 https://access.redhat.com/security/cve/CVE-2022-30293 https://access.redhat.com/security/cve/CVE-2022-30629 https://access.redhat.com/security/cve/CVE-2022-30630 https://access.redhat.com/security/cve/CVE-2022-30632 https://access.redhat.com/security/cve/CVE-2022-30633 https://access.redhat.com/security/cve/CVE-2022-30635 https://access.redhat.com/security/cve/CVE-2022-32148 https://access.redhat.com/security/cve/CVE-2022-32189 https://access.redhat.com/security/cve/CVE-2022-37434 https://access.redhat.com/security/cve/CVE-2022-42898 https://access.redhat.com/security/updates/classification#moderate 7. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY5qjzdzjgjWX9erEAQjjjA//es5rXZ2qQwQJekrx32tlQ+R2v2BO0jKJ EIKiMSoPFOotf2TPCnn60CHUGhBs/RkjtqYFIvKW+pMBioRkaqPc8yDCraOGszrH pAYPI6+lTAfr0YjPJmA9aP5c0tAspHCVISi7+cuIDPTWUPnKtiH9XA8z5WCjWY4H v2gfULxXtSy2gkG+ezS3xXjrkEvqo33sXhar9baoG3ILfStpNwIrQ3Qt55gYM1yh y0HxxSjuqpgGFUiSN2wJuox60xA9hFA4B/YVfhzvKs9JFW454tNSns1V+89MSKsF NIMtuLOpbYe0OT3YsgP2qA1rRwY/HVzV/ewNM9ATQIBPgfXlDt4A3KBhfcSB/xSm RnERhgp6PJmNU/t1wufhhOD/IfO55v6DKDHf1xZu8Q3NxhZ3ucXxLSrb17q0zOkp LngN8f0RYzXUNWOapCK+QPAXyhvUYkHi8VFxBbCgF48N00as6IpaK6hgYR9D+mCm WdljOEZR2CaNhnzU51vutM5T2J/B8S/CA8SYG/ndoyS+fwFkEDv+Ncmg+0Amtu6s pIhCdvxK6r9+Gh0qbKeT4ALnmUjowQ8+nVTP0GzDWR3InF/YWGOfWi+Q1moUZXND 7Hj1kp46KXlTzPbLKr54RPq98CT8wqPR1IZ7VKD+M5xTYWTlO+uED6TBxRBmrKrL O33JZ0TnfDw=cTlF -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Dec 15, 2022
Red Hat
89
security advisoryupdatebuffer overflowFedora 34: FEDORA-2022-62adf9a1e0 Moderate: nbd Buffer Overflow Fix
Update to 3.24: fix CVE-2022-26495, CVE-2022-26496. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-62adf9a1e0 2022-03-16 15:57:05.636809 --------------------------------------------------------------------------------Name : nbd Product : Fedora 34 Version : 3.24 Release : 1.fc34 URL : https://nbd.sourceforge.io/ Summary : Network Block Device user-space tools (TCP version) Description : Tools for the Linux Kernel's network block device, allowing you to use remote block devices over a TCP/IP network. --------------------------------------------------------------------------------Update Information: Update to 3.24: fix CVE-2022-26495, CVE-2022-26496 --------------------------------------------------------------------------------ChangeLog: * Tue Mar 8 2022 Robin Lee 3.24-1 - Update to 3.24: fix CVE-2022-26495(RHBZ#2061541), CVE-2022-26496(RHBZ#2061542) * Thu Jan 20 2022 Fedora Release Engineering 3.23-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Nov 26 2021 Robin Lee 3.23-1 - New release 3.23 * Tue Oct 12 2021 Robin Lee 3.22-3 - Fix test failure on armv7hl, another try * Mon Oct 11 2021 Robin Lee 3.22-2 - Fix test failure on armv7hl * Mon Oct 11 2021 Robin Lee 3.22-1 - New release 3.22 * Thu Jul 22 2021 Fedora Release Engineering - 3.21-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2061541 - CVE-2022-26495 nbd: heap-based buffer overflow in nbd-server.c https://bugzilla.redhat.com/show_bug.cgi?id=2061541 [ 2 ] Bug #2061542 - CVE-2022-26496 nbd: stack-based buffer overflow during name parsing in nbd-server.c https://bugzilla.redhat.com/show_bug.cgi?id=2061542 --------------------------------------------------------------------------------This update can be installed with the"dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-62adf9a1e0' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Mar 16, 2022
Fedora
89
security advisoryFedoracritical threatFedora 33: 2021-2306e89112 Critical: Kernel Tools DoS Mitigation
The 5.11.11 stable kernel update contains a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-2306e89112 2021-04-02 01:20:49.435014 --------------------------------------------------------------------------------Name : kernel-tools Product : Fedora 33 Version : 5.11.11 Release : 200.fc33 URL : https://www.kernel.org/ Summary : Assortment of tools for the Linux kernel Description : This package contains the tools/ directory from the kernel source and the supporting documentation. --------------------------------------------------------------------------------Update Information: The 5.11.11 stable kernel update contains a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Tue Mar 30 2021 Justin M. Forbes - 5.11.11-200 - Linux v5.11.11 --------------------------------------------------------------------------------References: [ 1 ] Bug #1945345 - CVE-2021-29646 kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c https://bugzilla.redhat.com/show_bug.cgi?id=1945345 [ 2 ] Bug #1945361 - CVE-2021-29647 kernel: information disclosure due to uninitialized data structure in qrtr_recvmsg function in net/qrtr/qrtr.c https://bugzilla.redhat.com/show_bug.cgi?id=1945361 [ 3 ] Bug #1945373 - CVE-2021-29648 kernel: DoS due to BPF subsystem does not properly consider that resolved_ids and resolved_sizes are intentionally uninitialized in the vmlinux BPF https://bugzilla.redhat.com/show_bug.cgi?id=1945373 [ 4 ] Bug #1945379 - CVE-2021-29649 kernel: memory leak in user mode driver due to lack of cleanup steps in kernel/usermode_driver.c and kernel/bpf/preload/bpf_preload_kern.c https://bugzilla.redhat.com/show_bug.cgi?id=1945379 [ 5 ] Bug #1945388 - CVE-2021-29650 kernel: lack a full memorybarrier upon the assignment of a new table value in net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h may lead to DoS https://bugzilla.redhat.com/show_bug.cgi?id=1945388 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-2306e89112' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Apr 01, 2021
•Critical
Fedora
197
security advisorydebiantool updateDebian 8 Jessie DLA-2134-1 Critical: Pdfresurrect Out-Of-Bounds Issue
It was discovered that there was an out-of-bounds write vulnerability in pdfresurrect, a tool for extracting or scrubbing versioning data from PDF documents. . Package : pdfresurrect Version : 0.12-5+deb8u1 CVE ID : CVE-2020-9549 Debian Bug : #952948 It was discovered that there was an out-of-bounds write vulnerability in pdfresurrect, a tool for extracting or scrubbing versioning data from PDF documents. For Debian 8 "Jessie", this issue has been fixed in pdfresurrect version 0.12-5+deb8u1. We recommend that you upgrade your pdfresurrect packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS Regards, - -- ,'`. : :' : Chris Lamb `. `'`
Mar 05, 2020
•Critical
Debian LTS
89
security advisorycriticalFedoraFedora 31: FEDORA-2020-3cd64d683c Critical: Kernel-Tools Update
The 5.5.6 stable kernel update contains a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-3cd64d683c 2020-02-29 03:20:42.435028 --------------------------------------------------------------------------------Name : kernel-tools Product : Fedora 31 Version : 5.5.6 Release : 200.fc31 URL : https://www.kernel.org/ Summary : Assortment of tools for the Linux kernel Description : This package contains the tools/ directory from the kernel source and the supporting documentation. --------------------------------------------------------------------------------Update Information: The 5.5.6 stable kernel update contains a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Mon Feb 24 2020 Justin M. Forbes - 5.5.6-200 - Linux v5.5.6 * Wed Feb 19 2020 Justin M. Forbes - 5.5.5-200 - Linux v5.5.5 * Tue Dec 31 2019 Justin M. Forbes - 5.4.7-200 - Linux v5.4.7 * Thu Dec 19 2019 Justin M. Forbes - 5.4.5-300 - Linux v5.4.5 * Tue Nov 12 2019 Justin M. Forbes - 5.3.11-300 - Linux v5.3.11 * Wed Nov 6 2019 Laura Abbott - 5.3.9-300 - Linux v5.3.9 --------------------------------------------------------------------------------References: [ 1 ] Bug #1800335 - iwlwifi: Can't parse phy_sku in B0, empty sections (missing firmware?) https://bugzilla.redhat.com/show_bug.cgi?id=1800335 [ 2 ] Bug #1797052 - CVE-2020-9391 kernel: brk discards top byte of addresses on aarch64, causing heap corruption in glibc malloc https://bugzilla.redhat.com/show_bug.cgi?id=1797052 [ 3 ] Bug #1772498 - Enable Sound Open Firmware (SOF) driver in Fedora for the recent Intel hardware https://bugzilla.redhat.com/show_bug.cgi?id=1772498 --------------------------------------------------------------------------------This update can be installed with the"dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-3cd64d683c' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 28, 2020
•Critical
Fedora
89
security advisoryfedorabuffer overflowFedora 30: FEDORA-2019-057d691fd4 Critical: Kernel-Tools Update
The 5.3.6 update contains a number of important fixes across the tree.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-057d691fd4 2019-10-18 16:52:43.659842 --------------------------------------------------------------------------------Name : kernel-tools Product : Fedora 30 Version : 5.3.6 Release : 200.fc30 URL : https://www.kernel.org/ Summary : Assortment of tools for the Linux kernel Description : This package contains the tools/ directory from the kernel source and the supporting documentation. --------------------------------------------------------------------------------Update Information: The 5.3.6 update contains a number of important fixes across the tree. --------------------------------------------------------------------------------ChangeLog: * Mon Oct 14 2019 Laura Abbott - 5.3.6-200 - Linux v5.3.6 * Tue Oct 8 2019 Laura Abbott - 5.3.5-200 - Linux v5.3.5 rebase * Mon Sep 23 2019 Justin M. Forbes - 5.2.17-200 - Linux v5.2.17 * Fri Sep 6 2019 Justin M. Forbes - 5.2.13-200 - Linux v5.2.13 * Thu Aug 29 2019 Justin M. Forbes - 5.2.11-200 - Linux v5.2.11 * Mon Aug 26 2019 Justin M. Forbes - 5.2.10-200 - Linux v5.2.10 * Fri Aug 16 2019 Justin M. Forbes - 5.2.9-200 - Linux v5.2.9 * Thu Aug 8 2019 Justin M. Forbes - 5.2.7-200 - Linux v5.2.7 * Mon Aug 5 2019 Justin M. Forbes - 5.2.6-200 - Linux v5.2.6 * Wed Jul 31 2019 Justin M. Forbes - 5.2.5-200 - Linux v5.2.5 * Mon Jul 29 2019 Justin M. Forbes - 5.2.4-200 - Linux v5.2.4 * Wed Jun 19 2019 Jeremy Cline - 5.1.12-300 - Linux v5.1.12 * Mon Jun 3 2019 Jeremy Cline - 5.1.6-300 - Linux v5.1.6 * Mon May 6 2019 Jeremy Cline - 5.1.4-300 - Linux v5.1.4 * Sat May 4 2019 Laura Abbott - 5.0.12-300 - Linux v5.0.12 --------------------------------------------------------------------------------References: [ 1 ] Bug #1760306 - CVE-2019-16746 kernel: buffer-overflow innet/wireless/nl80211.c https://bugzilla.redhat.com/show_bug.cgi?id=1760306 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-057d691fd4' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Oct 18, 2019
•Critical
Fedora
89
security advisorycriticalFedoraFedora 25: Critical Drawtiming Security Update & Bug Fixes
Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagick/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-3a568adb31 2017-09-19 14:22:11.619064 --------------------------------------------------------------------------------Name : drawtiming Product : Fedora 25 Version : 0.7.1 Release : 22.fc25 URL : Summary : A command line tool for generating timing diagrams Description : A command line tool for generating timing diagrams from ASCII input files. The input files use a structured language to represent signal state transitions and interdependencies. Raster image output support is provided by ImageMagick. It can be used for VHDL or verilog presentations. --------------------------------------------------------------------------------Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagick/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) --------------------------------------------------------------------------------References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgradedrawtiming' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Sep 19, 2017
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!