The following Fedora EPEL 7 Security updates need testing:
Age URL
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-f73923f479
python3-werkzeug-1.0.1-2.el7
4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2b99803700
python3-flask-1.1.4-1.el7
2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2a8f8b189e
clamav-0.103.10-1.el7
1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-0640e2bbd1
xrdp-0.9.23-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
libtommath-0.42.0-6.el7
Details about builds:
================================================================================
libtommath-0.42.0-6.el7 (FEDORA-EPEL-2023-fe96e69275)
A portable number theoretic multiple-precision integer library
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2023-36328
--------------------------------------------------------------------------------
ChangeLog:
* Sun Sep 3 2023 Frantisek Sumsal <[email protected]> - 0.42.0-6
- Fix CVE-2023-36328 (#2236877,#2236878)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2236877 - CVE-2023-36328 libtommath: Integer Overflow
vulnerability in mp_grow in libtom
https://bugzilla.redhat.com/show_bug.cgi?id=2236877
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
