stable

golang-github-nats-io-1.31.0-1.fc40, golang-github-nats-io-jwt-2-2.5.3-1.fc40, & 3 more

FEDORA-2023-5f984129b2 created by fuller 8 months ago for Fedora 40

Updated NATS stack for CVE-2023-39325 and CVE-2023-46129

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-5f984129b2

This update's test gating status has been changed to 'waiting'.

8 months ago

This update's test gating status has been changed to 'ignored'.

8 months ago

This update has been submitted for stable by bodhi

8 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
0 days
Dates
submitted
8 months ago
in testing
8 months ago
in stable
8 months ago
approved
8 months ago
BZ#2247715 CVE-2023-46129 golang-github-nats-io-nkeys: nkeys: xkeys Seal encryption used fixed key for all encryption [fedora-all]
0
0
BZ#2247716 CVE-2023-46129 nats-server: nkeys: xkeys Seal encryption used fixed key for all encryption [fedora-all]
0
0
BZ#2248318 golang-github-nats-io-streaming-server: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [fedora-all]
0
0
BZ#2248394 nats-server: golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-39325) [fedora-all]
0
0

Automated Test Results