FEDORA-2024-92bac3b909 — security update for libgit2

stable

libgit2-1.7.2-1.fc39

FEDORA-2024-92bac3b909 created by pwalter a year ago for Fedora 39

Update to 1.7.2

Resolves: CVE-2024-24577 Resolves: CVE-2024-24575

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-92bac3b909

This update has been submitted for testing by pwalter.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

filiperosset commented & provided feedback a year ago

karma

ok here

This update's test gating status has been changed to 'waiting'.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

jistone commented & provided feedback a year ago

karma

Looks good as used by Rust's Cargo.

This update can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

a year ago

in testing

a year ago

in stable

a year ago

approved

a year ago

Builds

libgit2-1.7.2-1.fc39

BZ#2261319 libgit2: FTBFS in Fedora rawhide/f40

BZ#2263096 TRIAGE CVE-2024-24577 libgit2: arbitrary code execution due to heap corruption in git_index_add [fedora-all]

BZ#2263101 TRIAGE CVE-2024-24575 libgit2: potential infiniate loop condition in git_revparse_single [fedora-all]

libgit2-1.7.2-1.fc39

Automated Test Results

ignored