stable

wob-0.10-1.fc32

FEDORA-2020-54010774d1 created by wef 4 years ago for Fedora 32

new version


fix error in changelog

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-54010774d1

This update has been submitted for testing by wef.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update's test gating status has been changed to 'waiting'.

4 years ago

This update has obsoleted wob-0.9-2.fc32, and has inherited its bugs and notes.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon ersen provided feedback 4 years ago
karma

hello, thx for the update

Can You comment on why this is tagged as a security release? The only fixed issue was

https://github.com/francma/wob/issues/48

which seems like a random crash.

The release announcement https://github.com/francma/wob/releases/tag/0.10 mentions:

NULL terminate color buffer string to prevent usage of uninitialised memory #48

... seems like a buffer overrun.

Sure, thanks for the feedback. #48 is the issue I'm referencing. I just can't see how this translates to a reasonable attack. I don't see memory disclosure..just Self-Dos, if You will.

So You're saying the color buffer string not being null-terminated leads to undefinded behaviour and hence may be a security issue?

Didn't think it through that far. Deserves a release anyhow.

sure, thanks for the release!

This update can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago

Automated Test Results