FEDORA-2018-fdc4ca8675 created by kdudka 2 years ago for Fedora 28
stable
  • SASL password overflow via integer overflow (CVE-2018-16839)
  • fix use-after-free in handle close (CVE-2018-16840)
  • fix bad arethmetic when outputting warnings to stderr (CVE-2018-16842)

How to install

sudo dnf upgrade --advisory=FEDORA-2018-fdc4ca8675

This update has been submitted for testing by kdudka.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon hreindl commented & provided feedback 2 years ago
karma

works for me

User Icon samoht0 commented & provided feedback 2 years ago
karma

no regressions noted

User Icon filiperosset commented & provided feedback 2 years ago
karma

no regressions noted

This update has been submitted for batched by bodhi.

2 years ago
User Icon kdudka commented & provided feedback 2 years ago

Thank you for testing the update!

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1644552 CVE-2018-16839 curl: Heap-based buffer overflow via integer overflow in curl_sasl.c:Curl_sasl_create_plain_message() [fedora-all]
0
0
BZ#1644555 CVE-2018-16840 curl: Use-after-free when closing and cleaning "easy" handle in Curl_close() [fedora-all]
0
0
BZ#1644558 CVE-2018-16842 curl: Heap-based buffer over-read in the curl tool warning formatting [fedora-all]
0
0

Automated Test Results