-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-4bbd13d425 2024-04-17 02:18:01.430704 --------------------------------------------------------------------------------
Name : python-cbor2 Product : Fedora 39 Version : 5.6.2 Release : 1.fc39 URL : https://github.com/agronholm/cbor2 Summary : Python CBOR (de)serializer with extensive tag support Description : This library provides encoding and decoding for the Concise Binary Object Representation (CBOR) (RFC 7049) serialization format.
-------------------------------------------------------------------------------- Update Information:
Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361) -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 8 2024 Fabian Affolter mail@fabian-affolter.ch - 5.6.2-1 - Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361) - Fixes CVE-2024-26134 (closes rhbz#2265036, closes rhbz#bug 2265035) * Sat Feb 3 2024 Fabian Affolter mail@fabian-affolter.ch - 5.6.1-1 - Update to latest upstream release 5.6.1 (closes rhbz#2245361) * Fri Jan 26 2024 Fedora Release Engineering releng@fedoraproject.org - 5.1.2-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Mon Jan 22 2024 Fedora Release Engineering releng@fedoraproject.org - 5.1.2-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Wed Aug 30 2023 Carl George carlwgeorge@fedoraproject.org - 5.1.2-12 - Convert to pyproject macros - Validated license as SPDX identifier -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2245361 - python-cbor2-5.6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2245361 [ 2 ] Bug #2261550 - python-cbor2: FTBFS in Fedora rawhide/f40 https://bugzilla.redhat.com/show_bug.cgi?id=2261550 [ 3 ] Bug #2265036 - CVE-2024-26134 python-cbor2: cbor2: Potential buffer overflow in CBOR2 decoder [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2265036 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-4bbd13d425' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------