Fedora Linux 8781 Published by

The following security updates have been released for Fedora Linux:

Fedora 38 Update: libreoffice-7.5.9.2-1.fc38
Fedora 38 Update: libcmis-0.6.2-1.fc38
Fedora 38 Update: java-17-openjdk-17.0.9.0.9-1.fc38




Fedora 38 Update: libreoffice-7.5.9.2-1.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-0d971cd6aa
2023-12-13 01:33:56.709109
--------------------------------------------------------------------------------

Name : libreoffice
Product : Fedora 38
Version : 7.5.9.2
Release : 1.fc38
URL : http://www.libreoffice.org/
Summary : Free Software Productivity Suite
Description :
LibreOffice is an Open Source, community-developed, office productivity suite.
It includes the key desktop applications, such as a word processor,
spreadsheet, presentation manager, formula editor and drawing program, with a
user interface and feature set similar to other office suites. Sophisticated
and flexible, LibreOffice also works transparently with a variety of file
formats, including Microsoft Office File Formats.

--------------------------------------------------------------------------------
Update Information:

7.5.9.2
--------------------------------------------------------------------------------
ChangeLog:

* Thu Dec 7 2023 Gwyn Ciesla [gwync@protonmail.com] - 1:7.5.9.2-1
- 7.5.9.2
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2254004 - CVE-2023-6185 libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2254004
[ 2 ] Bug #2254006 - CVE-2023-6186 libreoffice: Insufficient macro permission validation leading to macro execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2254006
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-0d971cd6aa' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 38 Update: libcmis-0.6.2-1.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-0d971cd6aa
2023-12-13 01:33:56.709109
--------------------------------------------------------------------------------

Name : libcmis
Product : Fedora 38
Version : 0.6.2
Release : 1.fc38
URL : https://github.com/tdf/libcmis
Summary : A C/C++ client library for CM interfaces
Description :
LibCMIS is a C/C++ client library for working with CM (content management)
interfaces. The primary supported interface (which gave the library its
name) is CMIS, which allows applications to connect to any ECM behaving
as a CMIS server (Alfresco or Nuxeo are examples of open source ones).
Another supported interface is Google Drive.

--------------------------------------------------------------------------------
Update Information:

7.5.9.2
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 15 2023 Gwyn Ciesla [gwync@protonmail.com] - 0.6.2-1
- 0.6.2
* Mon Nov 13 2023 Gwyn Ciesla [gwync@protonmail.com] - 0.6.1-1
- 0.6.1
* Thu Oct 12 2023 Gwyn Ciesla [gwync@protonmail.com] - 0.6.0-1
- 0.6.0
* Thu Jul 20 2023 Fedora Release Engineering [releng@fedoraproject.org] - 0.5.2-22
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Mon Feb 20 2023 Jonathan Wakely [jwakely@redhat.com] - 0.5.2-21
- Rebuilt for Boost 1.81
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2254004 - CVE-2023-6185 libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2254004
[ 2 ] Bug #2254006 - CVE-2023-6186 libreoffice: Insufficient macro permission validation leading to macro execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2254006
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-0d971cd6aa' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 38 Update: java-17-openjdk-17.0.9.0.9-1.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-433474a567
2023-12-13 01:33:56.708932
--------------------------------------------------------------------------------

Name : java-17-openjdk
Product : Fedora 38
Version : 17.0.9.0.9
Release : 1.fc38
URL : http://openjdk.java.net/
Summary : OpenJDK 17 Runtime Environment
Description :
The OpenJDK 17 runtime environment.

--------------------------------------------------------------------------------
Update Information:

updated to OpenJDK 17.0.9 (2023-10-17)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Nov 22 2023 Jiri Vanek [jvanek@redhat.com] - 1:17.0.9.0.9-1
- updated to OpenJDK 17.0.9 (2023-10-17)
* Fri Sep 29 2023 Yaakov Selkowitz [yselkowi@redhat.com] - 1:17.0.8.0.7-2
- Fix flatpak build
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-433474a567' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--