FEDORA-EPEL-2017-0ca79e82a3

security update in Fedora EPEL 6 for yara

Status: testing 9 days ago

bump to 3.6.3 release - bugfix CVE-2017-11328


Security fix for CVE-2017-9304, CVE-2017-9465, CVE-2017-9438, CVE-2017-8929

Comments 3

This update has been submitted for testing by rebus.

This update has obsoleted yara-3.6.2-1.el6, and has inherited its bugs and notes.

This update has been pushed to testing.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown.

-1 0 +1 Feedback Guidelines
#1471490 yara-3.6.3 is available
#1459490 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function
#1459491 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function [epel-all]
#1459013 CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled in the _ur_re_emit function [epel-6]
#1451382 CVE-2017-8929 yara: Use-after-free in sized_string_cmp function
Is the update generally functional?
Content Type
RPM
Status
testing
Submitted by
Update Type
security
Karma
0
stable threshold: 1
unstable threshold: -1
Autopush
Enabled
Dates
submitted 9 days ago
in testing 9 days ago
days to stable 5

Related Bugs 5

00 #1471490 yara-3.6.3 is available
00 #1459490 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function
00 #1459491 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function [epel-all]
00 #1459013 CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled in the _ur_re_emit function [epel-6]
00 #1451382 CVE-2017-8929 yara: Use-after-free in sized_string_cmp function

Automated Test Results