stable

wob-0.10-1.fc32

FEDORA-2020-54010774d1 created by wef 2 years ago for Fedora 32

new version


fix error in changelog

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2020-54010774d1

This update has been submitted for testing by wef.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update has obsoleted wob-0.9-2.fc32, and has inherited its bugs and notes.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago
User Icon ersen provided feedback 2 years ago
karma

hello, thx for the update

Can You comment on why this is tagged as a security release? The only fixed issue was

https://github.com/francma/wob/issues/48

which seems like a random crash.

The release announcement https://github.com/francma/wob/releases/tag/0.10 mentions:

NULL terminate color buffer string to prevent usage of uninitialised memory #48

... seems like a buffer overrun.

Sure, thanks for the feedback. #48 is the issue I'm referencing. I just can't see how this translates to a reasonable attack. I don't see memory disclosure..just Self-Dos, if You will.

So You're saying the color buffer string not being null-terminated leads to undefinded behaviour and hence may be a security issue?

Didn't think it through that far. Deserves a release anyhow.

sure, thanks for the release!

This update can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago

Automated Test Results