The following Fedora EPEL 7 Security updates need testing: Age URL 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-f73923f479 python3-werkzeug-1.0.1-2.el7 4 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2b99803700 python3-flask-1.1.4-1.el7 2 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2a8f8b189e clamav-0.103.10-1.el7 1 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-0640e2bbd1 xrdp-0.9.23-1.el7 The following builds have been pushed to Fedora EPEL 7 updates-testing libtommath-0.42.0-6.el7 Details about builds: ================================================================================ libtommath-0.42.0-6.el7 (FEDORA-EPEL-2023-fe96e69275) A portable number theoretic multiple-precision integer library -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2023-36328 -------------------------------------------------------------------------------- ChangeLog: * Sun Sep 3 2023 Frantisek Sumsal <frantisek@xxxxxxxxx> - 0.42.0-6 - Fix CVE-2023-36328 (#2236877,#2236878) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2236877 - CVE-2023-36328 libtommath: Integer Overflow vulnerability in mp_grow in libtom https://bugzilla.redhat.com/show_bug.cgi?id=2236877 -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list -- epel-devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to epel-devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/epel-devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
