FEDORA-2019-3f5b6f0f97

security update in Fedora 30 for curl

Status: stable 2 months ago
  • fix TFTP receive buffer overflow (CVE-2019-5436)
  • fix integer overflows in curl_url_set() (CVE-2019-5435)

How to install

sudo dnf upgrade --advisory=FEDORA-2019-3f5b6f0f97

Comments 12

This update has been submitted for testing by kdudka.

kdudka edited this update.

This update has been pushed to testing.

Works here.

karma: +1 critpath: +1

Works fine

karma: +1

no regressions noted

karma: +1

This update has been submitted for batched by bodhi.

karma: +1 critpath: +1

Thank you for testing the update!

works for me

karma: +1 critpath: +1

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+5
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 months ago
in testing 2 months ago
in stable 2 months ago
modified 2 months ago

Related Bugs 2

00 #1712839 CVE-2019-5435 curl: Integer overflows in curl_url_set() function [fedora-all]
00 #1712840 CVE-2019-5436 curl: TFTP receive heap buffer overflow in tftp_receive_packet() function [fedora-all]

Automated Test Results