Security fix for CVE-2020-5238

  • ghc-cmark-gfm updated to 0.2.2 which rebases the bundled cmark-gfm to 0.29.0.gfm.1

https://github.com/github/cmark-gfm/security/advisories/GHSA-7gc6-9qr5-hc85

How to install

sudo dnf upgrade --advisory=FEDORA-2020-fe299b3fa3

This update's test gating status has been changed to 'waiting'.

3 weeks ago

petersen edited this update.

3 weeks ago

This update's test gating status has been changed to 'ignored'.

3 weeks ago

This update has been submitted for testing by mattia.

3 weeks ago

This update has been pushed to testing.

3 weeks ago

This update can be pushed to stable now if the maintainer wishes

2 weeks ago

This update has been submitted for stable by bodhi.

2 weeks ago

This update has been pushed to stable.

2 weeks ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
3 weeks ago
in testing
3 weeks ago
in stable
2 weeks ago
modified
3 weeks ago
BZ#1854328 CVE-2020-5238 cmark: Exponential time to parse certain inputs could lead to DoS.
0
0
BZ#1854329 CVE-2020-5238 ghc-cmark-gfm: cmark: Exponential time to parse certain inputs could lead to DoS. [fedora-all]
0
0

Automated Test Results