FEDORA-2022-79b9a59e3b — security update for ghc-cmark-gfm

stable

FEDORA-2022-79b9a59e3b created by petersen 3 years ago for Fedora 36

Security fix for CVE-2022-24724 0.2.3 bundles the C cmark-gfm-0.29.0.gfm.3 library which fixes CVE-2022-24724 https://github.com/github/cmark-gfm/security/advisories/GHSA-mc3g-88wq-6f4x

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2022-79b9a59e3b

This update has been submitted for testing by petersen.

This update's test gating status has been changed to 'ignored'.

This update has been pushed to testing.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

3 days

Dates

submitted

3 years ago

in testing

3 years ago

in stable

2 years ago

Builds

BZ#2060662 CVE-2022-24724 cmark-gfm: possible RCE due to integer overflow

BZ#2060665 CVE-2022-24724 ghc-cmark-gfm: cmark-gfm: possible RCE due to integer overflow [fedora-35]

ghc-cmark-gfm-0.2.3-1.fc36

ignored