FEDORA-2024-6ad6b9f417 — security update for ghc-base64, ghc-hakyll, & 3 more

stable

ghc-base64-0.4.2.4-28.fc38, ghc-hakyll-4.16.2.0-1.fc38, & 3 more

FEDORA-2024-6ad6b9f417 created by petersen 2 years ago for Fedora 38

Security fix for CVE-2023-35936 and CVE-2023-38745

pandoc: backport fixes for CVE-2023-35936 and CVE-2023-38745
base64 now packaged in Fedora

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-6ad6b9f417

This update's test gating status has been changed to 'waiting'.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been submitted for testing by bodhi.

2 years ago

petersen edited this update.

2 years ago

petersen edited this update.

2 years ago

This update has been pushed to testing.

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

2 years ago

in testing

2 years ago

in stable

2 years ago

modified

2 years ago

approved

2 years ago

Builds

ghc-base64-0.4.2.4-28.fc38

ghc-hakyll-4.16.2.0-1.fc38

gitit-0.15.1.1-3.fc38

pandoc-2.19.2-22.fc38

patat-0.8.8.0-2.fc38

BZ#2163472 Review Request: ghc-base64 - A modern RFC 4648-compliant Base64 library

BZ#2220873 TRIAGE pandoc: TRIAGE_CVE-2023-35936 pandoc: allows attacker to create or overwrite arbitrary files on the system [fedora-all]

BZ#2227034 CVE-2023-38745 pandoc: allows attacker to create or overwrite arbitrary files on the system [fedora-all]

ghc-base64-0.4.2.4-28.fc38

ghc-hakyll-4.16.2.0-1.fc38

gitit-0.15.1.1-3.fc38

pandoc-2.19.2-22.fc38

patat-0.8.8.0-2.fc38

Automated Test Results

ignored