Fedora Linux 8784 Published by

A prrte security update has been released for Fedora 37.



[SECURITY] Fedora 37 Update: prrte-2.0.2-5.fc37


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-155d2f22f1
2023-10-04 02:59:33.979957
--------------------------------------------------------------------------------

Name : prrte
Product : Fedora 37
Version : 2.0.2
Release : 5.fc37
URL : https://github.com/openpmix/prrte
Summary : PMIx Reference RunTime Environment (PRRTE)
Description :
PRRTE is the PMIx Reference Run Time Environment.

The project is formally referred to in documentation by "PRRTE", and
the GitHub repository is "openpmix/prrte".

However, we have found that most users do not like typing the two
consecutive "r"s in the name. Hence, all of the internal API symbols,
environment variables, MCA frameworks, and CLI executables all use the
abbreviated "prte" (one "r", not two) for convenience.

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2023-41915
--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep 25 2023 Michel Lind [salimma@fedoraproject.org] - 2.0.2-5
- Rebuild for pmix 4.1.3
* Fri Jul 21 2023 Fedora Release Engineering [releng@fedoraproject.org] - 2.0.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jan 20 2023 Fedora Release Engineering [releng@fedoraproject.org] - 2.0.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2238898 - CVE-2023-41915 pmix: race condition allows attackers to obtain ownership of arbitrary files
https://bugzilla.redhat.com/show_bug.cgi?id=2238898
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-155d2f22f1' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------