Update the thread_local crate to version 1.1.4. This includes a fix for RUSTSEC-2022-0006 (possible memory corruption caused by a data race). All applications that statically link thread_local have been rebuilt for this version. Additionally, all rebuilt applications now include the fix for CVE-2022-21658 (Time-of-check Time-of-use race condition in
std::fs::remove_dir_all from the Rust standard library).
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2022-c4071e3dc7
Please login to add feedback.