Hello,
as there has a buffer-overflow vulnerability [1] been discovered in
json-c recently, I've patched [2] the package to fix the issue and
pushed updates for F3{2,1,0}. [3,4]
The update for F32 is already in stable, but the updates for the earlier
releases are still in waiting to be tested, and have received very
little feedback so far.
Can someone please test them and give some karma, please? Esp. for the
F30 update [4], as it should go to stable *before* F30 will go EOL.
Thanks
Björn
[1] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12762
[2] https://github.com/json-c/json-c/pull/611
[3] https://bodhi.fedoraproject.org/updates/FEDORA-2020-7eb7eac270
[4] https://bodhi.fedoraproject.org/updates/FEDORA-2020-847ad856ab
Attachment:
signature.asc
Description: This is a digitally signed message part
_______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
