FEDORA-EPEL-2024-21e104619e — security update for rust-rustls and rust-zlib-rs — Fedora Updates System

stable

rust-rustls-0.23.17-1.el10_0 and rust-zlib-rs-0.4.0-1.el10_0

FEDORA-EPEL-2024-21e104619e created by decathorpe a year ago for Fedora EPEL 10.0

Update the rustls crate to version 0.23.17.
Update the zlib-rs crate to version 0.4.0.

The update to zlib-rs v0.4.0 also addresses CVE-2024-11249 (stack overflow during decompression with malicious input). This issue had no actual impact in Fedora, because no applications yet use the the zlib-rs feature of rustls and rustls is the only dependent package of zlib-rs.

This update's test gating status has been changed to 'waiting'.

This update has been submitted for testing by bodhi.

This update's test gating status has been changed to 'ignored'.

This update has been pushed to testing.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

0

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

2

Stable by Time

7 days

Dates

submitted

a year ago

in testing

a year ago

in stable

a year ago

approved

a year ago

Builds

2

rust-rustls-0.23.17-1.el10_0

rust-zlib-rs-0.4.0-1.el10_0

rust-rustls-0.23.17-1.el10_0

rust-zlib-rs-0.4.0-1.el10_0

Automated Test Results

ignored

Copyright © 2007-2026 Red Hat, Inc. and others.

Running bodhi-server 26.4.0 on bodhi-web-6f874fb45-tc56b.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

• Composes • Legal • Privacy policy •