This updates addresses a critical security vulnerability in the DNS resolver related to AF_UNSPEC queries with getaddrinfo (CVE-2015-7547). It also includes security fixes for CVE-2015-8777 and CVE-2015-1781. It improves malloc scalability for applications which start and terminate many threads. The output of locale -a is now ASCII-only (previously, it contained ISO-8859-1 characters).
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2016-0480defc94Please login to add feedback.
This update has been submitted for testing by fweimer.
fweimer edited this update.
The expected bugs are fixed, build logs did not show any regression, general system behavior appears to be fine.
This update has been pushed to testing.
Looks good here. No issues.
karma: +1
no regressions noted
fweimer edited this update.
New build(s):
Removed build(s):
This update has been submitted for testing by fweimer.
Works fine after reboot.
filiperosset: I guess you need to re-test to get you karma count, because the builds were changed.
works for me
Works before and after reboot and passes the CVE-2015-7547 regression testsuite.
fweimer edited this update.
working OK here. haven't confirmed security fix, but no critpath problems.
This update has been pushed to testing.
This update has been submitted for stable by bodhi.
This update has been pushed to stable.