Fedora Linux 8783 Published by

A gnuchess security update has been released for Fedora 33.



SECURITY: Fedora 33 Update: gnuchess-6.2.7-5.fc33


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-2c714d311f
2021-04-16 14:33:16.807827
--------------------------------------------------------------------------------

Name : gnuchess
Product : Fedora 33
Version : 6.2.7
Release : 5.fc33
URL :   https://www.gnu.org/software/chess/
Summary : The GNU chess program
Description :
The gnuchess package contains the GNU chess program. By default,
GNU chess uses a curses text-based interface. Alternatively, GNU chess
can be used in conjunction with the xboard user interface and the X
Window System for play using a graphical chess board.

Install the gnuchess package if you would like to play chess on your
computer. If you'd like to use a graphical interface with GNU chess,
you'll also need to install the xboard package and the X Window System.

--------------------------------------------------------------------------------
Update Information:

Patch for CVE-2021-30184.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr 8 2021 Gwyn Ciesla - 6.2.7-5
- Patch for CVE-2021-30184
* Tue Jan 26 2021 Fedora Release Engineering - 6.2.7-4
- Rebuilt for   https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1947594 - CVE-2021-30184 gnuchess: buffer overflows in the cmd_pgnload() and cmd_pgnreplay() functions in frontend/cmd.cc [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=1947594
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-2c714d311f' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys