Stay Secure with the Latest Linux Advisories

security advisorycritical issuefedora

Fedora 34 FEDORA-2021-aa2936e810 Critical XMLGraphics Commons Issue

Security fix for CVE-2020-11988. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-aa2936e810 2021-03-28 00:14:56.477212 --------------------------------------------------------------------------------Name : xmlgraphics-commons Product : Fedora 34 Version : 2.6 Release : 1.fc34 URL : https://xmlgraphics.apache.org/ Summary : XML Graphics Commons Description : Apache XML Graphics Commons is a library that consists of several reusable components used by Apache Batik and Apache FOP. Many of these components can easily be used separately outside the domains of SVG and XSL-FO. You will find components such as a PDF library, an RTF library, Graphics2D implementations that let you generate PDF & PostScript files, and much more. --------------------------------------------------------------------------------Update Information: Security fix for CVE-2020-11988 --------------------------------------------------------------------------------ChangeLog: * Mon Mar 1 2021 Jie Kang - 0:2.6-1 - Update to latest upstream release --------------------------------------------------------------------------------References: [ 1 ] Bug #1933816 - CVE-2020-11988 xmlgraphics-commons: SSRF due to improper input validation by the XMPParser https://bugzilla.redhat.com/show_bug.cgi?id=1933816 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-aa2936e810' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Notification for Fedora users regarding a security patch in xmlgraphics-commons due to vulnerabilities linked to inadequate input validation.. Fedora Security Advisory, XML Graphics Commons, Input Validation Issue. . Severity: Critical. LinuxSecurity.com Team

Mar 27, 2021 •Critical Fedora