FEDORA-2019-f6fcc53d28

bugfix update in Fedora 28 for libidn2

Status: stable 2 months ago

Libidn 2.1.1 (released 2019-02-08)

  • Revert SONAME bump from release 2.1.0
  • Fix NULL dereference in idn2_register_u8() and idn2_register_ul()
  • Fix free of random value in idn2_to_ascii_4i()
  • Improved fuzzer (which found the above issues)
  • Fix printf() crash in test-lookup.c on Solaris
  • Check for valid unicode input in punycode encoder
  • Avoid excessive CPU usage in punycode encoding with large inputs
  • Deprecate idn2_to_ascii_4i() in favor of idn2_to_ascii_4i2()
  • Restrict output length of idn2_to_ascii_4i() to 63 bytes

Libidn 2.1.0 (released 2019-01-04)

  • Two exposed functions are no longer exposed: _idn2_punycode_encode() and _idn2_punycode_decode() which were meant to be used internally only. The output needs additional checks to be used safely. This is the reason to for the SONAME bump, just in case.
  • Fix label length check for idn2_register_u8()
  • Remove compiler warnings
  • Use gnulib-python tool for bootstrapping if possible
  • Improve build system (several small issues)
  • Add missing error messages to idn2_strerror_name()
  • Improve docs and remove typos
  • Update gnulib

How to install

sudo dnf upgrade --advisory=FEDORA-2019-f6fcc53d28

Comments 7

This update has been submitted for testing by robert.

This update has been pushed to testing.

no regressions noted

karma: +1

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by robert.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

Does the system's basic functionality continue to work after this update?
#1674002 libidn2-2.1.1a is available
#1674023 A new version of libidn2 has been released to fix a bug
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
bugfix
Update Severity
unspecified
Karma
+1
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 months ago
in testing 2 months ago
in stable 2 months ago

Related Bugs 2

00 #1674002 libidn2-2.1.1a is available
00 #1674023 A new version of libidn2 has been released to fix a bug

Automated Test Results