stable

rust-askama-0.11.1-4.fc36, rust-askama_shared-0.12.2-4.fc36, & 1 more

FEDORA-2023-b37722768e created by decathorpe a year ago for Fedora 36
  • Update comrak to version 0.18.0.
  • Disable the unused markdown support in askama and askama_shared crates, which depends on an ancient version of comrak.

This update also includes fixes for two medium-severity security issues in comrak (CVE-2023-28631 and CVE-2023-28626).

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-b37722768e

This update's test gating status has been changed to 'waiting'.

a year ago

This update has been submitted for testing by bodhi.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
approved
a year ago
BZ#2094154 rust-comrak-0.18.0 is available
0
0
BZ#2184923 CVE-2023-28631 rust-comrak: attacker controlled data in AST nodes is not validated [fedora-all]
0
0
BZ#2184926 CVE-2023-28626 rust-comrak: quadratic runtime when parsing Markdown [fedora-all]
0
0

Automated Test Results