-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-76d8603c78 2024-11-26 04:38:12.122771+00:00 -------------------------------------------------------------------------------- Name : cobbler Product : Fedora 40 Version : 3.3.7 Release : 1.fc40 URL : https://cobbler.github.io/ Summary : Boot server configurator Description : Cobbler is a network install server. Cobbler supports PXE, ISO virtualized installs, and re-installing existing Linux machines. The last two modes use a helper tool, 'koan', that integrates with cobbler. Cobbler's advanced features include importing distributions from DVDs and rsync mirrors, kickstart templating, integrated yum mirroring, and built-in DHCP/DNS Management. Cobbler has a XML-RPC API for integration with other applications. -------------------------------------------------------------------------------- Update Information: Update to 3.3.7 - CVE-2024-47533 -------------------------------------------------------------------------------- ChangeLog: * Sun Nov 17 2024 Orion Poplawski <orion@xxxxxxxx> - 3.3.7-1 - Update to 3.3.7 (CVE-2024-47533) * Fri Sep 27 2024 Carl George <carlwgeorge@xxxxxxxxxxxxxxxxx> - 3.3.6-2 - Fix cheetah dependency rhbz#2314630 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2326874 - cobbler-3.3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=2326874 [ 2 ] Bug #2327081 - CVE-2024-47533 cobbler: Cobbler allows anyone to connect to cobbler XML-RPC server with a known password and make changes [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2327081 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-76d8603c78' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
