Fedora Linux 8811 Published by

The following security updates are available for Fedora Linux:

Fedora 39 Update: buildah-1.35.4-1.fc39
Fedora 39 Update: suricata-6.0.19-1.fc39
Fedora 40 Update: suricata-7.0.5-1.fc40
Fedora 38 Update: mingw-python-werkzeug-2.2.3-2.fc38




Fedora 39 Update: buildah-1.35.4-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-c56e6ff1b5
2024-05-19 02:46:05.072735
--------------------------------------------------------------------------------

Name : buildah
Product : Fedora 39
Version : 1.35.4
Release : 1.fc39
URL : https://buildah.io
Summary : A command line tool used for creating OCI Images
Description :
The buildah package provides a command line tool which can be used to
* create a working container from scratch
or
* create a working container from an image as a starting point
* mount/umount a working container's root file system for manipulation
* save container's root file system layer to create a new image
* delete a working container or an image

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2024-3727
Automatic update for buildah-1.35.4-1.fc39.
Changelog for buildah
* Fri May 10 2024 Packit [hello@packit.dev] - 1.35.4-1
- Update to 1.35.4 upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 10 2024 Packit [hello@packit.dev] - 1.35.4-1
- Update to 1.35.4 upstream release
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-c56e6ff1b5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: suricata-6.0.19-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-aa2fdd75f7
2024-05-19 02:46:05.072728
--------------------------------------------------------------------------------

Name : suricata
Product : Fedora 39
Version : 6.0.19
Release : 1.fc39
URL : https://suricata-ids.org/
Summary : Intrusion Detection System
Description :
The Suricata Engine is an Open Source Next Generation Intrusion
Detection and Prevention Engine. This engine is not intended to
just replace or emulate the existing tools in the industry, but
will bring new ideas and technologies to the field. This new Engine
supports Multi-threading, Automatic Protocol Detection (IP, TCP,
UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP
Matching, and GeoIP identification.

--------------------------------------------------------------------------------
Update Information:

This is a security and bug fix release.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 7 2024 Steve Grubb [sgrubb@redhat.com] 6.0.19-1
- New security and bugfix release
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-aa2fdd75f7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 40 Update: suricata-7.0.5-1.fc40


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-9cce1f4b49
2024-05-19 01:29:46.920838
--------------------------------------------------------------------------------

Name : suricata
Product : Fedora 40
Version : 7.0.5
Release : 1.fc40
URL : https://suricata-ids.org/
Summary : Intrusion Detection System
Description :
The Suricata Engine is an Open Source Next Generation Intrusion
Detection and Prevention Engine. This engine is not intended to
just replace or emulate the existing tools in the industry, but
will bring new ideas and technologies to the field. This new Engine
supports Multi-threading, Automatic Protocol Detection (IP, TCP,
UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP
Matching, and GeoIP identification.

--------------------------------------------------------------------------------
Update Information:

This is a security and bug fix release.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 7 2024 Steve Grubb [sgrubb@redhat.com] 7.0.5-1
- New security and bugfix release
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-9cce1f4b49' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 38 Update: mingw-python-werkzeug-2.2.3-2.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-48123e7aae
2024-05-19 01:16:41.782737
--------------------------------------------------------------------------------

Name : mingw-python-werkzeug
Product : Fedora 38
Version : 2.2.3
Release : 2.fc38
URL : https://palletsprojects.com/p/werkzeug/
Summary : MinGW Windows Python Werkzeug library
Description :
MinGW Windows Python Werkzeug library.

--------------------------------------------------------------------------------
Update Information:

Backport fix for CVE-2024-34069.
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 10 2024 Sandro Mani [manisandro@gmail.com] - 2.2.3-2
- Backport fix for CVE-2024-34069
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2279653 - CVE-2024-34069 mingw-python-werkzeug: python-werkzeug: user may execute code on a developer's machine [fedora-38]
https://bugzilla.redhat.com/show_bug.cgi?id=2279653
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-48123e7aae' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--