This update to the apr package fixes a security issue in the handling of shared memory permissions.
SECURITY: CVE-2023-49582: Apache Portable Runtime (APR):
Unexpected lax shared memory permissions (cve.mitre.org)
Lax permissions set by the Apache Portable Runtime library on
Unix platforms would allow local users read access to named
shared memory segments, potentially revealing sensitive
application data.
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2024-b40491b84bPlease log in to add feedback.
| 0 | 1 | Test Case apr |
This update has been submitted for testing by jorton.
This update's test gating status has been changed to 'waiting'.
jorton edited this update.
This update's test gating status has been changed to 'passed'.
This update has been pushed to testing.
Works.
Works
This update can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by bodhi.
This update has been pushed to stable.