stable

rust-asyncgit-0.24.3-3.fc39, rust-bat-0.24.0-3.fc39, & 14 more

FEDORA-2024-8ba389815f created by decathorpe 4 months ago for Fedora 39
  • Update the git2 crate to version 0.18.2.
  • Update the libgit2-sys crate to version 0.16.2.

Version 0.16.2 of the libgit2-sys crate includes an update of the bundled copy of libgit2 to version 1.7.2 to address CVE-2024-24575 and CVE-2024-24577.

Since the libgit2 bindings cause applications that use them to statically link libgit2, this update also includes rebuilds of all affected applications.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-8ba389815f

This update's test gating status has been changed to 'waiting'.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been submitted for testing by bodhi.

4 months ago

This update has been pushed to testing.

4 months ago
User Icon atim provided feedback 4 months ago
karma
karma

This update can be pushed to stable now if the maintainer wishes

4 months ago
User Icon kparal commented & provided feedback 4 months ago
karma

prints files correctly

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

BZ#2263100 TRIAGE CVE-2024-24577 rust-libgit2-sys: libgit2: arbitrary code execution due to heap corruption in git_index_add [fedora-all]
0
0
BZ#2263105 TRIAGE CVE-2024-24575 rust-libgit2-sys: libgit2: potential infiniate loop condition in git_revparse_single [fedora-all]
0
0

Automated Test Results