Fedora Linux 8811 Published by

A yara security update has been released for Fedora 36.



SECURITY: Fedora 36 Update: yara-4.2.3-1.fc36


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-21cf5402fc
2022-08-17 01:05:09.336585
--------------------------------------------------------------------------------

Name : yara
Product : Fedora 36
Version : 4.2.3
Release : 1.fc36
URL :   https://VirusTotal.github.io/yara/
Summary : Pattern matching Swiss knife for malware researchers
Description :
YARA is a tool aimed at (but not limited to) helping malware researchers to
identify and classify malware samples. With YARA you can create descriptions
of malware families (or whatever you want to describe) based on textual or
binary patterns. Each description, a.k.a rule, consists of a set of strings
and a Boolean expression which determine its logic.

--------------------------------------------------------------------------------
Update Information:

Update to yara-4.2.3 ---- Update to 4.2.0 ---- Update to 4.2.2
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug 9 2022 Mikel Olasagasti Uranga - 4.2.3-1
- Update to 4.2.3 (#2116594)
* Sat Jul 23 2022 Fedora Release Engineering - 4.2.2-2
- Rebuilt for   https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
* Mon Jul 18 2022 Mikel Olasagasti Uranga - 4.2.2-1
- Update to 4.2.2 (#2103444)
- BUGFIX: Fix buffer overrun in "dex" module (#1728).
- BUGFIX: Wrong offset used when checking Version string of .net metadata (#1708).
- BUGFIX: YARA doesn't compile if --with-debug-verbose flag is enabled (#1719).
- BUGFIX: Null-pointer dereferences while loading corrupted compiled rules (#1727).
* Mon May 23 2022 Michal Ambroz - 4.2.1-1
- bump to 4.2.1
- adding changes based on proposal of Mikel Olasagasti Uranga:
- change to BSD license as yara was relicensed in 2016
- minor changes to spec, like using https for URL
- remove old patches
- enable checks
* Sat Mar 12 2022 Michal Ambroz - 4.2.0-1
- bump to 4.2.0
* Thu Feb 17 2022 Michal Ambroz - 4.2.0-0.rc1.1
- bump to 4.2.0-rc1
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2112508 - Update yara to 4.2.2
  https://bugzilla.redhat.com/show_bug.cgi?id=2112508
[ 2 ] Bug #2116289 - F36FailsToInstall: python3-yara
  https://bugzilla.redhat.com/show_bug.cgi?id=2116289
[ 3 ] Bug #2116594 - yara-4.2.3 is available
  https://bugzilla.redhat.com/show_bug.cgi?id=2116594
[ 4 ] Bug #2117081 - F36FailsToInstall: python3-yara
  https://bugzilla.redhat.com/show_bug.cgi?id=2117081
[ 5 ] Bug #2117161 - python-yara-4.2.3 is available
  https://bugzilla.redhat.com/show_bug.cgi?id=2117161
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-21cf5402fc' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________