SECURITY: Fedora 37 Update: insight-13.0.50.20220502-9.fc37
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-b4d1469b54
2023-04-22 21:46:52.998410
--------------------------------------------------------------------------------
Name : insight
Product : Fedora 37
Version : 13.0.50.20220502
Release : 9.fc37
URL : https://www.sourceware.org/insight/
Summary : Graphical debugger based on GDB
Description :
Insight is a tight graphical user interface to GDB written in Tcl/Tk.
It provides a comprehensive interface that enables users to harness
most of GDB's power. It's also probably the only up-to-date UI for
the latest GDB version.
--------------------------------------------------------------------------------
Update Information:
Disable stringop-overflow warnings. Patch "bfd-CVE-2023-1972" fixes a security
issue in bfd library.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 14 2023 Patrick Monnerat 13.0.50.20220502-9
- Disable stringop-overflow warnings.
- Patch "bfd-CVE-2023-1972" fixes a security issue in bfd library.
https://bugzilla.redhat.com/show_bug.cgi?id=2185646
* Wed Jan 25 2023 Florian Weimer - 13.0.50.20220502-8
- Apply binutils-gdb upstream patch to fix C99 issue in configure script
* Tue Jan 24 2023 Patrick Monnerat 13.0.50.20220502-7
- Patch "noselfmove" removes the move to self tests.
* Thu Jan 19 2023 Fedora Release Engineering - 13.0.50.20220502-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Fri Dec 23 2022 Patrick Monnerat 13.0.50.20220502-5
- Patch "distutils" removes deprecated python 3.12 module use.
https://bugzilla.redhat.com/show_bug.cgi?id=2155038
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2186379 - insight: FTBFS in Fedora Rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=2186379
[ 2 ] Bug #2186582 - CVE-2023-1972 insight: binutils: Illegal memory access when accessing a zer0-lengthverdef table [fedora-36]
https://bugzilla.redhat.com/show_bug.cgi?id=2186582
[ 3 ] Bug #2186587 - CVE-2023-1972 insight: binutils: Illegal memory access when accessing a zer0-lengthverdef table [fedora-37]
https://bugzilla.redhat.com/show_bug.cgi?id=2186587
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-b4d1469b54' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
An insight security update has been released for Fedora 37.