FEDORA-EPEL-2017-0ca79e82a3

security update in Fedora EPEL 6 for yara

Status: stable 2 months ago

bump to 3.6.3 release - bugfix CVE-2017-11328


Security fix for CVE-2017-9304, CVE-2017-9465, CVE-2017-9438, CVE-2017-8929

Comments 6

This update has been submitted for testing by rebus.

This update has obsoleted yara-3.6.2-1.el6, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by rebus.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown.

-1 0 +1 Feedback Guidelines
#1471490 yara-3.6.3 is available
#1459490 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function
#1459491 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function [epel-all]
#1459013 CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled in the _ur_re_emit function [epel-6]
#1451382 CVE-2017-8929 yara: Use-after-free in sized_string_cmp function
Is the update generally functional?
Content Type
RPM
Status
stable
Submitted by
Update Type
security
Karma
0
stable threshold: 1
unstable threshold: -1
Autopush
Enabled
Dates
submitted 2 months ago
in testing 2 months ago
in stable 2 months ago

Related Bugs 5

00 #1471490 yara-3.6.3 is available
00 #1459490 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function
00 #1459491 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function [epel-all]
00 #1459013 CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled in the _ur_re_emit function [epel-6]
00 #1451382 CVE-2017-8929 yara: Use-after-free in sized_string_cmp function

Automated Test Results