stable

rpm-4.12.0.1-4.fc21

FEDORA-2014-16890 created by lkardos 8 years ago for Fedora 21
  • Add check against malicious CPIO file name size
  • Fix race condidition where unchecked data is exposed in the file system

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2014-16890

This update has been submitted for testing by lkardos.

8 years ago

This update has been submitted for testing by lkardos.

8 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/20754/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/20754/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

8 years ago
karma

Critical path update approved

8 years ago

This update has been pushed to testing

8 years ago
User Icon nonamedotc commented & provided feedback 8 years ago
karma

no problems noticed. rpm, rpmbuild work as before

User Icon lonelywoolf commented & provided feedback 8 years ago
karma

used without issues

This update has reached the stable karma threshold and will be pushed to the stable updates repository

8 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/21287/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

8 years ago

This update has been pushed to stable

8 years ago

Please login to add feedback.

Metadata
Type
security
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
8 years ago
in testing
8 years ago
in stable
8 years ago
BZ#1039811 CVE-2013-6435 rpm: race condition during the installation process
0
0
BZ#1168715 CVE-2014-8118 rpm: integer overflow and stack overflow in CPIO header parsing
0
0
BZ#1172125 CVE-2014-8118 CVE-2013-6435 rpm: various flaws [fedora-all]
0
0

Automated Test Results