FEDORA-2015-4553

security update in Fedora 22 for libzip

Status: stable 4 years ago

CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677)

How to install

sudo dnf upgrade --advisory=FEDORA-2015-4553

Comments 18

This update has been submitted for testing by rdieter.

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/50683/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/50695/steps/runtask/logs/stdio (results are informative only)

The patch is not actually applied in libzip.spec

karma: -1

rdieter has edited this update. New build(s): libzip-0.11.2-5.fc22. Removed build(s): libzip-0.11.2-4.fc22.

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/50906/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/50906/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 testing updates repository.

Taskotron: depcheck test FAILED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/51600/steps/runtask/logs/stdio (results are informative only)

Automatic push to stable based on karma has been disabled for this update due to failure of an AutoQA test. Update submitter, please check the AutoQA test result and see if there is a valid problem to be fixed here, and fix it if so. If the failure is a mistake on AutoQA's part, you can re-enable the automatic push feature for this update if you like, or push it stable manually once it reaches the requirements under the Updates Policy.

This update has been pushed to testing

Works for me

karma: +1

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by rdieter.

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/54805/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/54806/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 22 stable updates repository.

This update has been pushed to stable

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+1
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Disabled
Autopush (time)
Disabled
Dates
submitted 4 years ago
in testing 4 years ago
in stable 4 years ago
modified 4 years ago

Related Bugs 2

00 #1204676 CVE-2015-2331 libzip: integer overflow when processing ZIP archives
00 #1204677 CVE-2015-2331 php: libzip: integer overflow when processing ZIP archives [fedora-all]

Automated Test Results