FEDORA-2024-2ac7273bab — security update for libgsf

stable

libgsf-1.14.53-1.fc40

FEDORA-2024-2ac7273bab created by limb 8 months ago for Fedora 40

Fixes for memory vulnerabilities.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-2ac7273bab

This update has been submitted for testing by limb.

8 months ago

This update's test gating status has been changed to 'waiting'.

8 months ago

This update's test gating status has been changed to 'waiting'.

8 months ago

This update's test gating status has been changed to 'passed'.

8 months ago

This update has been pushed to testing.

8 months ago

filiperosset commented & provided feedback 8 months ago

karma

no regressions noted

ttrinks commented & provided feedback 8 months ago

karma

:+1: lgtm

BZ#2317953 (CVE-2024-42415) - CVE-2024-42415 libgsf: Compound Document Binary File Sector Allocation Table integer overflow vulnerability

BZ#2317954 (CVE-2024-36474) - CVE-2024-36474 libgsf: Compound Document Binary File Directory integer overflow vulnerability

This update can be pushed to stable now if the maintainer wishes

8 months ago

This update has been submitted for stable by limb.

8 months ago

This update has been pushed to stable.

8 months ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

8 months ago

in testing

8 months ago

in stable

8 months ago

Builds

libgsf-1.14.53-1.fc40

BZ#2317953 (CVE-2024-42415) - CVE-2024-42415 libgsf: Compound Document Binary File Sector Allocation Table integer overflow vulnerability

BZ#2317954 (CVE-2024-36474) - CVE-2024-36474 libgsf: Compound Document Binary File Directory integer overflow vulnerability

libgsf-1.14.53-1.fc40

Automated Test Results

passed