-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-257f422587 2025-03-14 02:12:06.905856+00:00 -------------------------------------------------------------------------------- Name : iniparser Product : Fedora 40 Version : 4.1 Release : 17.fc40 URL : https://github.com/ndevilla/iniparser Summary : C library for parsing "INI-style" files Description : iniParser is an ANSI C library to parse "INI-style" files, often used to hold application configuration information. -------------------------------------------------------------------------------- Update Information: Patched libiniparser to fix CVE-2025-0633 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 26 2025 David Cantrell <dcantrell@xxxxxxxxxx> - 4.1-17 - Patch for CVE-2025-0633 - Heap Overflow in iniparser.c (#2346474) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2346474 - CVE-2025-0633 iniparser: Heap Overflow in iniparser.c https://bugzilla.redhat.com/show_bug.cgi?id=2346474 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-257f422587' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
