Security fix for CVE-2022-21658, a TOCTOU race condition in std::fs::remove_dir_all. Privileged programs should be rebuilt if they use this function on paths that may be manipulated with lesser privileges. For more details, see the upstream security advisory.

Additional features from 1.58.0:

  • Captured identifiers in format strings
  • More #[must_use] in the standard library
  • Stabilized APIs

See the blog post and release notes for more details.

This update has been submitted for testing by jistone.

6 months ago

This update's test gating status has been changed to 'ignored'.

6 months ago

This update has been pushed to testing.

6 months ago

This update has been submitted for stable by bodhi.

6 months ago

This update has been pushed to stable.

6 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
6 months ago
in testing
6 months ago
in stable
6 months ago
BZ#2041504 CVE-2022-21658 rust: Race condition in remove_dir_all leading to removal of files outside of the directory being removed
0
0
BZ#2043031 CVE-2022-21658 rust: Race condition in remove_dir_all leading to removal of files outside of the directory being removed [epel-7]
0
0

Automated Test Results

Test Cases

0 0 Test Case rust compile