-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2024-c3521d114d 2024-08-26 00:40:08.879428 --------------------------------------------------------------------------------
Name : libsass Product : Fedora EPEL 9 Version : 3.6.6 Release : 1.el9 URL : https://sass-lang.com/libsass Summary : C/C++ port of the Sass CSS precompiler Description : Libsass is a C/C++ port of the Sass CSS precompiler. The original version was written in Ruby, but this version is meant for efficiency and portability. This library strives to be light, simple, and easy to build and integrate with a variety of platforms and languages. Libsass is just a library, but if you want to RUN libsass, install the sassc package. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2022-43357 Update libsass to 3.6.6 (fixes CVE-2022-43357); update python-libsass to 0.23.0 and python-qtsass to 0.4.0, with various packaging improvements. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 26 2024 Benjamin A. Beasley <[email protected]> - 3.6.6-1 - Update to 3.6.6 (close RHBZ#1963228) * Fri Jan 26 2024 Benjamin A. Beasley <[email protected]> - 3.6.5-5 - Assorted minor packaging enhancements * Thu Jan 25 2024 Fedora Release Engineering <[email protected]> - 3.6.5-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Sun Jan 21 2024 Fedora Release Engineering <[email protected]> - 3.6.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Thu Jul 20 2023 Fedora Release Engineering <[email protected]> - 3.6.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild * Fri May 26 2023 Aurelien Bompard <[email protected]> - 3.6.5-1 - Version 3.6.5 * Thu Jan 19 2023 Fedora Release Engineering <[email protected]> - 3.6.4-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Thu Jul 21 2022 Fedora Release Engineering <[email protected]> - 3.6.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1873395 - python-libsass-0.22.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1873395 [ 2 ] Bug #2235702 - CVE-2022-43358 libsass: Stack overflow vulnerability in ast_selectors.cpp [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235702 [ 3 ] Bug #2235706 - TRIAGE libsass: Stack overflow vulnerability in function Sass::CompoundSelector::has_real_parent_ref [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2235706 [ 4 ] Bug #2257155 - python-libsass-0.23.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=2257155 -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update libsass' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ epel-package-announce mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
