Fedora Linux 8810 Published by

The following security updates have been released for Fedora Linux:

Fedora 39 Update: mingw-python-urllib3-1.26.19-1.fc39
Fedora 40 Update: mingw-poppler-24.02.0-2.fc40
Fedora 40 Update: mingw-python-urllib3-1.26.19-1.fc40




Fedora 39 Update: mingw-python-urllib3-1.26.19-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-73f181db2a
2024-06-30 01:20:11.282531
--------------------------------------------------------------------------------

Name : mingw-python-urllib3
Product : Fedora 39
Version : 1.26.19
Release : 1.fc39
URL : https://urllib3.readthedocs.io/en/latest/
Summary : MinGW Windows Python urllib3
Description :
MinGW Windows Python urllib3.

--------------------------------------------------------------------------------
Update Information:

Update to 1.26.19, fixes CVE-2024-0444.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 21 2024 Sandro Mani [manisandro@gmail.com] - 1.26.19-1
- Update to 1.26.19
* Thu Jan 25 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.26.18-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.26.18-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Oct 19 2023 Sandro Mani [manisandro@gmail.com] - 1.26.18-1
- Update to 1.26.18
* Tue Oct 3 2023 Sandro Mani [manisandro@gmail.com] - 1.26.17-1
- Update to 1.26.17
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2292791 - mingw-python-urllib3: urllib3: proxy-authorization request header is not stripped during cross-origin redirects [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2292791
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-73f181db2a' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--



Fedora 40 Update: mingw-poppler-24.02.0-2.fc40


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-94068499c9
2024-06-30 05:05:43.324716
--------------------------------------------------------------------------------

Name : mingw-poppler
Product : Fedora 40
Version : 24.02.0
Release : 2.fc40
URL : http://poppler.freedesktop.org/
Summary : MinGW Windows Poppler library
Description :
MinGW Windows Poppler library.

--------------------------------------------------------------------------------
Update Information:

Backport fix for CVE-2024-6239.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 21 2024 Sandro Mani [manisandro@gmail.com] - 24.02.0-2
- Backport fix for CVE-2024-6239
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2293595 - CVE-2024-6239 mingw-poppler: poppler: pdfinfo: crash in broken documents when using -dests parameter [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2293595
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-94068499c9' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--



Fedora 40 Update: mingw-python-urllib3-1.26.19-1.fc40


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-da86a4f061
2024-06-30 05:05:43.324710
--------------------------------------------------------------------------------

Name : mingw-python-urllib3
Product : Fedora 40
Version : 1.26.19
Release : 1.fc40
URL : https://urllib3.readthedocs.io/en/latest/
Summary : MinGW Windows Python urllib3
Description :
MinGW Windows Python urllib3.

--------------------------------------------------------------------------------
Update Information:

Update to 1.26.19, fixes CVE-2024-0444.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 21 2024 Sandro Mani [manisandro@gmail.com] - 1.26.19-1
- Update to 1.26.19
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2292791 - mingw-python-urllib3: urllib3: proxy-authorization request header is not stripped during cross-origin redirects [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2292791
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-da86a4f061' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

--