-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2019-fe6d1fbffa 2019-04-09 00:01:39.900361 --------------------------------------------------------------------------------
Name : libu2f-host Product : Fedora 30 Version : 1.1.8 Release : 1.fc30 URL : http://developers.yubico.com/libu2f-host/ Summary : Yubico Universal 2nd Factor (U2F) Host C Library Description : libu2f-host provides a C library that implements the host-side of the U2F protocol. There are APIs to talk to a U2F device and perform the U2F Register and U2F Authenticate operations.
-------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2019-9578 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1685954 - CVE-2019-9578 libu2f-host: leak of uninitialized stack in devs.c https://bugzilla.redhat.com/show_bug.cgi?id=1685954 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-fe6d1fbffa' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
package-announce@lists.fedoraproject.org