The following Fedora EPEL 7 Security updates need testing: Age URL 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-f73923f479 python3-werkzeug-1.0.1-2.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2b99803700 python3-flask-1.1.4-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2a8f8b189e clamav-0.103.10-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-0640e2bbd1 xrdp-0.9.23-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
libtommath-0.42.0-6.el7
Details about builds:
================================================================================ libtommath-0.42.0-6.el7 (FEDORA-EPEL-2023-fe96e69275) A portable number theoretic multiple-precision integer library -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2023-36328 -------------------------------------------------------------------------------- ChangeLog:
* Sun Sep 3 2023 Frantisek Sumsal frantisek@sumsal.cz - 0.42.0-6 - Fix CVE-2023-36328 (#2236877,#2236878) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2236877 - CVE-2023-36328 libtommath: Integer Overflow vulnerability in mp_grow in libtom https://bugzilla.redhat.com/show_bug.cgi?id=2236877 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org