Fedora Linux 8487 Published by

The following updates have been released for Fedora Linux:

Fedora 38 Update: python-jinja2-3.1.3-1.fc38
Fedora 39 Update: atril-1.26.2-1.fc39
Fedora 39 Update: dotnet8.0-8.0.101-1.fc39




Fedora 38 Update: python-jinja2-3.1.3-1.fc38


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-604e4c3509
2024-01-27 02:11:29.806432
--------------------------------------------------------------------------------

Name : python-jinja2
Product : Fedora 38
Version : 3.1.3
Release : 1.fc38
URL : https://palletsprojects.com/p/jinja/
Summary : General purpose template engine
Description :
Jinja2 is a template engine written in pure Python. It provides a
Django inspired non-XML syntax but supports inline expressions and an
optional sandboxed environment.

If you have any exposure to other text-based template languages, such
as Smarty or Django, you should feel right at home with Jinja2. It's
both designer and developer friendly by sticking to Python's
principles and adding functionality useful for templating
environments.

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2024-22195
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jan 11 2024 Michel Lind [salimma@fedoraproject.org] - 3.1.3-1
- Update to 3.1.3 to fix CVE-2024-22195
* Tue Aug 8 2023 Karolina Surma [ksurma@redhat.com] - 3.1.2-6
- Declare the license as an SPDX expression
* Fri Jul 21 2023 Fedora Release Engineering [releng@fedoraproject.org] - 3.1.2-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Fri Jun 16 2023 Python Maint - 3.1.2-4
- Rebuilt for Python 3.12
* Tue Jun 13 2023 Python Maint - 3.1.2-3
- Bootstrap for Python 3.12
* Fri May 19 2023 Yaakov Selkowitz [yselkowi@redhat.com] - 3.1.2-2
- Disable docs by default in RHEL builds
* Mon May 1 2023 Sandro Mani [manisandro@gmail.com] - 3.1.2-1
- Update to 3.1.2
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2257854 - CVE-2024-22195 jinja2: HTML attribute injection when passing user input as keys to xmlattr filter
https://bugzilla.redhat.com/show_bug.cgi?id=2257854
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-604e4c3509' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: atril-1.26.2-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-3914113f25
2024-01-27 01:27:37.234457
--------------------------------------------------------------------------------

Name : atril
Product : Fedora 39
Version : 1.26.2
Release : 1.fc39
URL : http://mate-desktop.org
Summary : Document viewer
Description :
Mate-document-viewer is simple document viewer.
It can display and print Portable Document Format (PDF),
PostScript (PS), Encapsulated PostScript (EPS), DVI, DJVU, epub and XPS files.
When supported by the document format, mate-document-viewer
allows searching for text, copying text to the clipboard,
hypertext navigation, table-of-contents bookmarks and editing of forms.

--------------------------------------------------------------------------------
Update Information:

- update to 1.26.2 - fix security security advisory
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan 24 2024 Wolfgang Ulbrich [fedora@raveit.de] - 1.26.2-1
- update to 1.26.2
* Mon Jan 22 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.26.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 19 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.26.1-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2258392 - CVE-2023-51698 atril: vulnerable to Command Injection Vulnerability [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2258392
[ 2 ] Bug #2258393 - CVE-2023-51698 atril: vulnerable to Command Injection Vulnerability [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2258393
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-3914113f25' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: dotnet8.0-8.0.101-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-a23144cfd5
2024-01-27 01:27:37.234028
--------------------------------------------------------------------------------

Name : dotnet8.0
Product : Fedora 39
Version : 8.0.101
Release : 1.fc39
URL : https://github.com/dotnet/
Summary : .NET Runtime and SDK
Description :
.NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, macOS and Windows.

It particularly focuses on creating console applications, web
applications and micro-services.

.NET contains a runtime conforming to .NET Standards a set of
framework libraries, an SDK containing compilers and a 'dotnet'
application to drive everything.

--------------------------------------------------------------------------------
Update Information:

This is the January 2024 update for .NET 8. Release Notes:
https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.1/8.0.1.md
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jan 9 2024 Omair Majid [omajid@redhat.com] - 8.0.101-1
- Update to .NET SDK 8.0.101 and Runtime 8.0.1
* Tue Dec 12 2023 Omair Majid [omajid@redhat.com] - 8.0.100-2
- Enable gpg signature verification
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-a23144cfd5' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--