FEDORA-2016-338a7e9925 — security update for graphite2

stable

graphite2-1.3.6-1.fc22

FEDORA-2016-338a7e9925 created by caolanm 7 years ago for Fedora 22

Unspecified security fixes

Security fix for CVE-2016-1521, CVE-2016-1522, CVE-2016-1523 and CVE-2016-1526

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-338a7e9925

This update has been submitted for testing by caolanm.

7 years ago

This update has obsoleted graphite2-1.3.5-1.fc22, and has inherited its bugs and notes.

7 years ago

This update has been pushed to testing.

7 years ago

norenh commented & provided feedback 7 years ago

karma

No regressions detected

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

7 years ago

kevin commented & provided feedback 7 years ago

karma

seems ok to me

This update has been submitted for stable by bodhi.

7 years ago

filiperosset commented & provided feedback 7 years ago

karma

no regressions noted

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

graphite2-1.3.6-1.fc22

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

7 years ago

in testing

7 years ago

in stable

7 years ago

BZ#1305806 CVE-2016-1521 graphite2: Two out-of-bound read vulnerabilities triggered by crafted fonts [fedora-all]

BZ#1305811 CVE-2016-1522 graphite2: Null pointer dereference and out-of-bounds access vulnerabilities [fedora-all]

BZ#1305814 CVE-2016-1523 graphite2: Heap-based buffer overflow in context item handling functionality [fedora-all]

BZ#1308591 CVE-2016-1526 graphite2: Out-of-bounds read vulnerability in TfUtil:LocaLookup [fedora-all]

graphite2-1.3.6-1.fc22

Automated Test Results

None