https://bugzilla.redhat.com/show_bug.cgi?id=2242180
Bug ID: 2242180
Summary: CVE-2023-43665 python-django3: python-django:
Denial-of-service possibility in
django.utils.text.Truncator [epel-8]
Product: Fedora EPEL
Version: epel8
Status: NEW
Component: python-django3
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: michel(a)michel-slm.name
Reporter: gsuckevi(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2241046
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2242180
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2283537
Bug ID: 2283537
Summary: [abrt] blender: nouveau_pushbuf_data(): blender killed
by SIGABRT
Product: Fedora
Version: 39
Hardware: x86_64
Status: NEW
Whiteboard: abrt_hash:b44f481c6ee8000b8b32075b06b7c22f80494771;VAR
IANT_ID=workstation;
Component: blender
Assignee: luya_tfz(a)thefinalzone.net
Reporter: kens(a)cad2cam.com
QA Contact: extras-qa(a)fedoraproject.org
CC: code(a)musicinmybrain.net,
design-devel(a)lists.fedoraproject.org,
epel-packagers-sig(a)lists.fedoraproject.org,
kwizart(a)gmail.com, luya_tfz(a)thefinalzone.net,
negativo17(a)gmail.com
Target Milestone: ---
Classification: Fedora
Description of problem:
Click on icon for blender. Recently upgraded to Fedora 39 from Fedora 38 using
dnf.sytem-upgrade
Version-Release number of selected component:
blender-1:4.0.2-3.fc39
Additional info:
reporter: libreport-2.17.11
backtrace_rating: 4
crash_function: nouveau_pushbuf_data
kernel: 6.8.9-200.fc39.x86_64
cmdline: /usr/bin/blender
type: CCpp
comment: Click on icon for blender. Recently upgraded to Fedora 39 from
Fedora 38 using dnf.sytem-upgrade
runlevel: N 5
uid: 1000
cgroup:
0::/user.slice/user-1000.slice/user@1000.service/app.slice/app-gnome-blender-4788.scope
journald_cursor:
s=745c60fef9494dd2a073a61c03076bf2;i=1229a9;b=85695086aabf41b0a0ed6e5cd76cf2cb;m=efc84f17;t=618d25a93ca32;x=72d97e127fcaa4f0
package: blender-1:4.0.2-3.fc39
executable: /usr/bin/blender
reason: blender killed by SIGABRT
rootdir: /
Truncated backtrace:
Thread no. 1 (37 frames)
#6 nouveau_pushbuf_data at ../nouveau/pushbuf.c:730
#8 pushbuf_submit at ../nouveau/pushbuf.c:331
#9 pushbuf_flush at ../nouveau/pushbuf.c:408
#10 pushbuf_refn at ../nouveau/pushbuf.c:478
#11 nouveau_pushbuf_refn at ../nouveau/pushbuf.c:742
#12 nvc0_screen_fence_emit at
../src/gallium/drivers/nouveau/nvc0/nvc0_screen.c:779
#13 _nouveau_fence_emit at ../src/gallium/drivers/nouveau/nouveau_fence.c:95
#14 _nouveau_fence_next at ../src/gallium/drivers/nouveau/nouveau_fence.c:291
#15 nvc0_default_kick_notify at
../src/gallium/drivers/nouveau/nvc0/nvc0_context.c:285
#16 pushbuf_submit at ../nouveau/pushbuf.c:329
#17 pushbuf_flush at ../nouveau/pushbuf.c:408
#18 pushbuf_validate at ../nouveau/pushbuf.c:530
#19 nouveau_pushbuf_validate at ../nouveau/pushbuf.c:756
#20 PUSH_VAL at ../src/gallium/drivers/nouveau/nouveau_winsys.h:107
#21 nvc0_m2mf_copy_linear at
../src/gallium/drivers/nouveau/nvc0/nvc0_transfer.c:292
#22 nouveau_transfer_write at
../src/gallium/drivers/nouveau/nouveau_buffer.c:223
#23 nouveau_buffer_transfer_unmap at
../src/gallium/drivers/nouveau/nouveau_buffer.c:561
#24 pipe_buffer_unmap at ../src/gallium/auxiliary/util/u_inlines.h:427
#25 u_default_buffer_subdata at ../src/gallium/auxiliary/util/u_transfer.c:39
#26 blender::gpu::GLStorageBuf::update at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/gpu/opengl/gl_storage_buffer.cc:61
#27 GPU_storagebuf_update at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/gpu/intern/gpu_storage_buffer.cc:75
#28 blender::draw::detail::StorageCommon<unsigned int, 128l,
false>::push_update at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/intern/DRW_gpu_wrapper.hh:241
#29 blender::draw::command::DrawCommandBuf::bind at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/intern/draw_command.cc:602
#30 blender::draw::Manager::submit at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/intern/draw_manager.cc:168
#31 blender::workbench::AntiAliasingPass::draw at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/engines/workbench/workbench_effect_antialiasing.cc:327
#32 blender::workbench::Instance::draw at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/engines/workbench/workbench_engine.cc:481
#33 blender::workbench::Instance::draw_viewport at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/engines/workbench/workbench_engine.cc:491
#34 workbench_draw_scene at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/engines/workbench/workbench_engine.cc:578
#35 drw_engines_draw_scene at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/intern/draw_manager_c.cc:1113
#36 DRW_draw_render_loop_ex at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/draw/intern/draw_manager_c.cc:1758
#37 view3d_draw_view at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/editors/space_view3d/view3d_draw.cc:1596
#38 view3d_main_region_draw at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/editors/space_view3d/view3d_draw.cc:1630
#39 ED_region_do_draw at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/editors/screen/area.cc:532
#40 wm_draw_window_offscreen at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/windowmanager/intern/wm_draw.cc:1007
#41 wm_draw_window at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/windowmanager/intern/wm_draw.cc:1174
#42 wm_draw_update at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/windowmanager/intern/wm_draw.cc:1572
#43 WM_main at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/windowmanager/intern/wm.cc:615
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2283537
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2279330
Bug ID: 2279330
Summary: [abrt] gnome-calendar:
g_type_check_instance_is_fundamentally_a():
gnome-calendar killed by SIGSEGV
Product: Fedora
Version: 39
Hardware: x86_64
Status: NEW
Whiteboard: abrt_hash:87d01c6e2747ec395354f4237510fa8f759fceb6;VAR
IANT_ID=workstation;
Component: gnome-calendar
Assignee: gnome-sig(a)lists.fedoraproject.org
Reporter: loctauxphilippe(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
gnome-sig(a)lists.fedoraproject.org,
igor.raits(a)gmail.com, klember(a)redhat.com
Target Milestone: ---
Classification: Fedora
Version-Release number of selected component:
gnome-calendar-45.1-1.fc39
Additional info:
reporter: libreport-2.17.11
type: CCpp
reason: gnome-calendar killed by SIGSEGV
journald_cursor:
s=fb1b0e53264c4fcd84e1eabf4ae77146;i=204928;b=d8bc54d024404581b000ce06f4e60489;m=5fd3d5f6d;t=617c9cc03eb25;x=47347f51c6830239
executable: /usr/bin/gnome-calendar
cmdline: /usr/bin/gnome-calendar --gapplication-service
cgroup:
0::/user.slice/user-1000.slice/user@1000.service/app.slice/dbus-:1.2-org.gnome.Calendar@0.service
rootdir: /
uid: 1000
kernel: 6.8.7-200.fc39.x86_64
package: gnome-calendar-45.1-1.fc39
runlevel: N 5
backtrace_rating: 4
crash_function: g_type_check_instance_is_fundamentally_a
Truncated backtrace:
Thread no. 1 (18 frames)
#0 g_type_check_instance_is_fundamentally_a at ../gobject/gtype.c:4184
#1 g_object_get_data at ../gobject/gobject.c:4217
#2 select_row at ../src/gui/gcal-quick-add-popover.c:175
#3 update_default_calendar_row at ../src/gui/gcal-quick-add-popover.c:490
#4 gcal_quick_add_popover_closed at ../src/gui/gcal-quick-add-popover.c:820
#6 signal_emit_unlocked_R.isra.0 at ../gobject/gsignal.c:4020
#7 signal_emit_valist_unlocked at ../gobject/gsignal.c:3612
#10 _g_closure_invoke_va at ../gobject/gclosure.c:895
#11 signal_emit_valist_unlocked at ../gobject/gsignal.c:3516
#14 gtk_widget_hide at ../gtk/gtkwidget.c:2780
#16 signal_emit_unlocked_R.isra.0 at ../gobject/gsignal.c:3980
#17 signal_emit_valist_unlocked at ../gobject/gsignal.c:3612
#21 g_object_notify_by_spec_internal at ../gobject/gobject.c:1551
#24 set_is_mapped_idle at ../gdk/gdksurface.c:2722
#27 g_main_context_dispatch_unlocked at ../glib/gmain.c:4284
#28 g_main_context_iterate_unlocked.isra.0 at ../glib/gmain.c:4349
#29 g_main_context_iteration at ../glib/gmain.c:4414
#30 g_application_run at ../gio/gapplication.c:2577
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2279330
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2278408
Bug ID: 2278408
Summary: [abrt] blender: fatal_error_exit(): blender killed by
SIGABRT
Product: Fedora
Version: 39
Hardware: x86_64
Status: NEW
Whiteboard: abrt_hash:54951f5526ad308b622bf259be93fed0ff7f5d73;VAR
IANT_ID=kde;
Component: blender
Assignee: luya_tfz(a)thefinalzone.net
Reporter: achapkis(a)dls.net
QA Contact: extras-qa(a)fedoraproject.org
CC: code(a)musicinmybrain.net,
design-devel(a)lists.fedoraproject.org,
epel-packagers-sig(a)lists.fedoraproject.org,
joao.manganelli.86(a)gmail.com, kwizart(a)gmail.com,
luya_tfz(a)thefinalzone.net, negativo17(a)gmail.com
Target Milestone: ---
Classification: Fedora
Description of problem:
The problem happens when I create a box in the blender to have a fluid
simulation as a domain. As soon as I chose the type of the system as a "domain"
the blender crashes.
The problem is reproducible 100%
Version-Release number of selected component:
blender-1:4.0.2-3.fc39
Additional info:
reporter: libreport-2.17.11
kernel: 6.8.7-200.fc39.x86_64
crash_function: fatal_error_exit
cgroup:
0::/user.slice/user-1002.slice/user@1002.service/app.slice/app-blender-f6fe48cf4da244a28243404435b952ed.scope
reason: blender killed by SIGABRT
rootdir: /
uid: 1002
backtrace_rating: 4
type: CCpp
cmdline: /usr/bin/blender
runlevel: N 5
executable: /usr/bin/blender
journald_cursor:
s=f9f3718d8a9140e2b65943bfd9251d23;i=17129ac;b=b3a929d935994af5965c5176ecca5e43;m=8da9f2c8b4;t=617695243620a;x=24d1c1e56769840e
package: blender-1:4.0.2-3.fc39
Truncated backtrace:
Thread no. 1 (30 frames)
#4 fatal_error_exit at
/usr/src/debug/python3.12-3.12.2-2.fc39.x86_64/Python/pylifecycle.c:2735
#5 fatal_error at
/usr/src/debug/python3.12-3.12.2-2.fc39.x86_64/Python/pylifecycle.c:2846
#6 _Py_FatalErrorFunc at
/usr/src/debug/python3.12-3.12.2-2.fc39.x86_64/Python/pylifecycle.c:2932
#7 PyImport_AppendInittab at
/usr/src/debug/python3.12-3.12.2-2.fc39.x86_64/Python/import.c:1499
#8 Pb::WrapperRegistry::construct at
/usr/include/c++/13/bits/basic_string.h:222
#9 Pb::setup at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/extern/mantaflow/helper/pwrapper/registry.cpp:714
#10 MANTA::initializeMantaflow at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/intern/mantaflow/intern/MANTA_main.cpp:718
#11 MANTA::MANTA at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/intern/mantaflow/intern/MANTA_main.cpp:170
#12 manta_init at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/intern/mantaflow/intern/manta_fluid_API.cpp:17
#13 BKE_fluid_reallocate_fluid at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/fluid.cc:112
#14 fluid_modifier_init at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/fluid.cc:528
#15 fluid_modifier_processDomain at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/fluid.cc:3735
#16 fluid_modifier_process at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/fluid.cc:4075
#17 BKE_fluid_modifier_do at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/fluid.cc:4093
#18 fluid_modifier_do_isolated at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/modifiers/intern/MOD_fluid.cc:108
#19 tbb::interface7::internal::isolate_within_arena at
../../src/tbb/arena.cpp:1199
#20 tbb::interface7::internal::isolate_impl<void, const BLI_task_isolate(void
(*)(void*), void*)::<lambda()> > at /usr/include/tbb/task_arena.h:216
#21 tbb::interface7::this_task_arena::isolate<BLI_task_isolate(void
(*)(void*), void*)::<lambda()> > at /usr/include/tbb/task_arena.h:472
#22 BLI_task_isolate at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenlib/intern/task_scheduler.cc:74
#23 modify_mesh at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/modifiers/intern/MOD_fluid.cc:139
#25 mesh_calc_modifiers at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/DerivedMesh.cc:897
#26 mesh_build_data at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/DerivedMesh.cc:1406
#27 makeDerivedMesh at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/DerivedMesh.cc:1587
#28 BKE_object_handle_data_update at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/object_update.cc:169
#29 BKE_object_eval_uber_data at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/blenkernel/intern/object_update.cc:341
#30 operator() at
/usr/src/debug/blender-4.0.2-3.fc39.x86_64/source/blender/depsgraph/intern/builder/deg_builder_nodes.cc:1639
#31 std::__invoke_impl<void,
blender::deg::DepsgraphNodeBuilder::build_object_data_geometry(Object*)::<lambda(Depsgraph*)>&,
Depsgraph*> at /usr/include/c++/13/bits/invoke.h:61
#32 std::__invoke_r<void,
blender::deg::DepsgraphNodeBuilder::build_object_data_geometry(Object*)::<lambda(Depsgraph*)>&,
Depsgraph*> at /usr/include/c++/13/bits/invoke.h:111
#33 std::_Function_handler<void(Depsgraph*),
blender::deg::DepsgraphNodeBuilder::build_object_data_geometry(Object*)::<lambda(Depsgraph*)>
>::_M_invoke(const std::_Any_data &, Depsgraph *&&) at
/usr/include/c++/13/bits/std_function.h:290
#34 std::function<void (Depsgraph*)>::operator()(Depsgraph*) const at
/usr/include/c++/13/bits/std_function.h:591
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2278408
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2276553
Bug ID: 2276553
Summary: Clicking in Hamburger menu causes calendar to scroll
up
Product: Fedora
Version: 39
Hardware: x86_64
OS: Linux
Status: NEW
Component: gnome-calendar
Severity: medium
Assignee: gnome-sig(a)lists.fedoraproject.org
Reporter: steve8988(a)gmail.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
gnome-sig(a)lists.fedoraproject.org,
igor.raits(a)gmail.com, klember(a)redhat.com
Target Milestone: ---
Classification: Fedora
In the GNOME calendar app, when clicking on the hamburger menu on the left or
scrolling through the menu items (using either mouse or keyboard), each click
or scroll causes the calendar to scroll up.
Reproducible: Always
Steps to Reproduce:
1. Open calendar app in GNOME
2. Click on the hamburger menu in left panel and randomly scroll through each
menu item
3. Watch calendar scroll up on its own
Actual Results:
The calendar scrolls up on its own each time a menu item is selected (via mouse
or keyboard)
Expected Results:
Unless this is a feature, it shouldn't scroll the calendar up when selecting
something from the menu.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2276553
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2276141
Bug ID: 2276141
Summary: CVE-2024-31745 libdwarf: use after free in
dw_empty_errlist_item in dwarf_alloc.c [fedora-all]
Product: Fedora
Version: 39
Status: NEW
Component: libdwarf
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: tom(a)compton.nu
Reporter: rgatica(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: epel-packagers-sig(a)lists.fedoraproject.org,
michel(a)michel-slm.name, orion(a)nwra.com, tom(a)compton.nu
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2276140
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2276141
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2275236
Bug ID: 2275236
Summary: CVE-2024-22189 dnscrypt-proxy: quic-go: memory
exhaustion attack against QUIC's connection ID
mechanism [fedora-39]
Product: Fedora
Version: 39
Status: NEW
Component: dnscrypt-proxy
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: davide(a)cavalca.name
Reporter: askrabec(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: davide(a)cavalca.name,
epel-packagers-sig(a)lists.fedoraproject.org,
go-sig(a)lists.fedoraproject.org, zebob.m(a)gmail.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2273513
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2275236
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2274129
Bug ID: 2274129
Summary: CVE-2024-2236 mingw-libgcrypt: libgcrypt: vulnerable
to Marvin Attack [fedora-all]
Product: Fedora
Version: 39
Status: NEW
Component: mingw-libgcrypt
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: rjones(a)redhat.com
Reporter: darunesh(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: cfergeau(a)redhat.com, elima(a)redhat.com,
epel-packagers-sig(a)lists.fedoraproject.org,
marcandre.lureau(a)redhat.com, rjones(a)redhat.com
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2245218
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2274129
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…
https://bugzilla.redhat.com/show_bug.cgi?id=2272893
Bug ID: 2272893
Summary: CVE-2024-3205 python-ruamel-yaml-clib: libyaml:
Heap-Based Buffer Overflow [fedora-all]
Product: Fedora
Version: 39
Status: NEW
Component: python-ruamel-yaml-clib
Keywords: Security, SecurityTracking
Severity: medium
Priority: medium
Assignee: chkumar(a)redhat.com
Reporter: ahanwate(a)redhat.com
QA Contact: extras-qa(a)fedoraproject.org
CC: chkumar(a)redhat.com,
epel-packagers-sig(a)lists.fedoraproject.org,
jmontleo(a)redhat.com,
openstack-sig(a)lists.fedoraproject.org
Target Milestone: ---
Classification: Fedora
More information about this security flaw is available in the following bug:
http://bugzilla.redhat.com/show_bug.cgi?id=2272889
Disclaimer: Community trackers are created by Red Hat Product Security team on
a best effort basis. Package maintainers are required to ascertain if the flaw
indeed affects their package, before starting the update process.
--
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2272893
Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-sp…