FEDORA-EPEL-2017-0ca79e82a3

security update in Fedora EPEL 6 for yara

Status: stable 2 years ago

bump to 3.6.3 release - bugfix CVE-2017-11328


Security fix for CVE-2017-9304, CVE-2017-9465, CVE-2017-9438, CVE-2017-8929

How to install

sudo dnf upgrade --advisory=FEDORA-EPEL-2017-0ca79e82a3

Comments 6

This update has been submitted for testing by rebus.

This update has obsoleted yara-3.6.2-1.el6, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by rebus.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1451382 CVE-2017-8929 yara: Use-after-free in sized_string_cmp function
#1459013 CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled in the _ur_re_emit function [epel-6]
#1459490 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function
#1459491 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function [epel-all]
#1471490 yara-3.6.3 is available
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 1
unstable threshold: -1
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 5

00 #1451382 CVE-2017-8929 yara: Use-after-free in sized_string_cmp function
00 #1459013 CVE-2017-9438 yara: Stack consumption via a crafted rule mishandled in the _ur_re_emit function [epel-6]
00 #1459490 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function
00 #1459491 CVE-2017-9465 yara: Buffer over-read in yr_arena_write_data function [epel-all]
00 #1471490 yara-3.6.3 is available

Automated Test Results