FEDORA-2015-10155 created by kdudka 4 years ago for Fedora 22
stable
  • implement public key pinning for NSS backend (#1195771)
  • fix lingering HTTP credentials in connection re-use (CVE-2015-3236)
  • prevent SMB from sending off unrelated memory contents (CVE-2015-3237)
  • curl-config --libs now works on x86_64 without libcurl-devel.x86_64 (#1228363)

How to install

sudo dnf upgrade --advisory=FEDORA-2015-10155

This update has been submitted for testing by kdudka.

4 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/89348/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/89348/steps/runtask/logs/stdio (results are informative only)

karma

This update is currently being pushed to the Fedora 22 testing updates repository.

4 years ago

This update has been pushed to testing

4 years ago
User Icon akurtakov commented & provided feedback 4 years ago
karma

works for me

Critical path update approved

4 years ago

Thanks for the feedback!

This update has been submitted for stable by kdudka.

4 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/100231/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/100232/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/100232/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

4 years ago

This update has been pushed to stable

4 years ago

Please login to add feedback.

Metadata
Type
security
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
modified
4 years ago
BZ#1195771 support "--pinnedpubkey" option (feature REQ)
0
0
BZ#1228363 curl-config broken when i686 version installed on x86_64
0
0
BZ#1233814 CVE-2015-3237 curl: SMB send off unrelated memory contents
0
0
BZ#1233816 CVE-2015-3236 curl: lingering HTTP credentials in connection re-use
0
0
BZ#1233818 CVE-2015-3237 CVE-2015-3236 curl: various flaws [fedora-all]
0
0

Automated Test Results