Fedora Linux 8764 Published by

The following security updates are available for Fedora Linux:

Fedora 39 Update: virtiofsd-1.10.1-1.fc39
Fedora 39 Update: rust-vm-superio-0.7.0-4.fc39
Fedora 39 Update: rust-vmm-sys-util-0.12.1-2.fc39
Fedora 39 Update: rust-vm-memory-0.14.0-1.fc39
Fedora 39 Update: libkrun-1.7.2-4.fc39
Fedora 39 Update: rust-vhost-user-backend-0.13.1-2.fc39
Fedora 39 Update: rust-kvm-bindings-0.7.0-1.fc39
Fedora 39 Update: rust-virtio-queue-0.11.0-1.fc39
Fedora 39 Update: rust-vhost-0.10.0-2.fc39
Fedora 39 Update: rust-userfaultfd-0.8.1-2.fc39
Fedora 39 Update: rust-linux-loader-0.11.0-1.fc39
Fedora 39 Update: rust-versionize-0.2.0-2.fc39
Fedora 39 Update: rust-kvm-ioctls-0.16.0-2.fc39
Fedora 39 Update: rust-event-manager-0.4.0-2.fc39
Fedora 39 Update: firecracker-1.6.0-6.fc39
Fedora 39 Update: wireshark-4.0.12-1.fc39



Fedora 39 Update: virtiofsd-1.10.1-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : virtiofsd
Product : Fedora 39
Version : 1.10.1
Release : 1.fc39
URL : https://gitlab.com/virtio-fs/virtiofsd
Summary : Virtio-fs vhost-user device daemon (Rust version)
Description :
Virtio-fs vhost-user device daemon (Rust version).

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 5 2024 Sergio Lopez [slp@redhat.com] - 1.10.1-1
- Update to version 1.10.1
* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.10.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Jan 23 2024 Sergio Lopez [slp@redhat.com] - 1.10.0-1
- Update to version 1.10.0
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-vm-superio-0.7.0-4.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-vm-superio
Product : Fedora 39
Version : 0.7.0
Release : 4.fc39
URL : https://crates.io/crates/vm-superio
Summary : Emulation for legacy devices
Description :
Emulation for legacy devices.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.7.0-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Jan 9 2024 David Michael [fedora.dm0@gmail.com] - 0.7.0-3
- Bump vmm-sys-util to 0.12 for CVE-2023-50711
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-vmm-sys-util-0.12.1-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-vmm-sys-util
Product : Fedora 39
Version : 0.12.1
Release : 2.fc39
URL : https://crates.io/crates/vmm-sys-util
Summary : System utility set
Description :
A system utility set.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.12.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Mon Jan 8 2024 Sergio Lopez [slp@redhat.com] - 0.12.1-1
- Update to version 0.12.1; Fixes RHBZ#2256561 RHBZ#2256562
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-vm-memory-0.14.0-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-vm-memory
Product : Fedora 39
Version : 0.14.0
Release : 1.fc39
URL : https://crates.io/crates/vm-memory
Summary : Safe abstractions for accessing the VM physical memory
Description :
Safe abstractions for accessing the VM physical memory.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan 8 2024 Sergio Lopez [slp@redhat.com] - 0.14.0-1
- Update to version 0.14.0; Fixes RHBZ#2240198
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: libkrun-1.7.2-4.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : libkrun
Product : Fedora 39
Version : 1.7.2
Release : 4.fc39
URL : https://github.com/containers/libkrun
Summary : Dynamic library providing Virtualization-based process isolation capabilities
Description :
Dynamic library providing Virtualization-based process isolation capabilities.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jan 25 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.7.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.7.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jan 11 2024 Sergio Lopez [slp@redhat.com] - 1.7.2-2
- Update versions of rust-vmm dependencies
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-vhost-user-backend-0.13.1-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-vhost-user-backend
Product : Fedora 39
Version : 0.13.1
Release : 2.fc39
URL : https://crates.io/crates/vhost-user-backend
Summary : Framework to build vhost-user backend service daemon
Description :
A framework to build vhost-user backend service daemon.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.13.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Jan 23 2024 Sergio Lopez [slp@redhat.com] - 0.13.1-1
- Update to version 0.13.1; Fixes RHBZ#2248536
* Thu Jan 11 2024 Sergio Lopez [slp@redhat.com] - 0.12.0-1
- Update to version 0.12.0; Fixes RHBZ#2248536
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-kvm-bindings-0.7.0-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-kvm-bindings
Product : Fedora 39
Version : 0.7.0
Release : 1.fc39
URL : https://crates.io/crates/kvm-bindings
Summary : Rust FFI bindings to KVM generated using bindgen
Description :
Rust FFI bindings to KVM generated using bindgen.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jan 11 2024 Sergio Lopez [slp@redhat.com] - 0.7.0-1
- Update to version 0.7.0; Fixes RHBZ#2256629
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-virtio-queue-0.11.0-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-virtio-queue
Product : Fedora 39
Version : 0.11.0
Release : 1.fc39
URL : https://crates.io/crates/virtio-queue
Summary : Virtio queue implementation
Description :
Virtio queue implementation.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan 8 2024 Sergio Lopez [slp@redhat.com] - 0.11.0-1
- Update to version 0.11.0; Fixes RHBZ#2246407
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-vhost-0.10.0-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-vhost
Product : Fedora 39
Version : 0.10.0
Release : 2.fc39
URL : https://crates.io/crates/vhost
Summary : Pure rust library for vdpa, vhost and vhost-user
Description :
A pure rust library for vdpa, vhost and vhost-user.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.10.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jan 11 2024 Sergio Lopez [slp@redhat.com] - 0.10.0-1
- Update to version 0.10.0; Fixes RHBZ#2248535
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-userfaultfd-0.8.1-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-userfaultfd
Product : Fedora 39
Version : 0.8.1
Release : 2.fc39
URL : https://crates.io/crates/userfaultfd
Summary : Rust bindings for the Linux userfaultfd functionality
Description :
Rust bindings for the Linux userfaultfd functionality.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.8.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 19 2024 David Michael [fedora.dm0@gmail.com] - 0.8.1-1
- Update to version 0.8.1 (rhbz#2257998)
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-linux-loader-0.11.0-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-linux-loader
Product : Fedora 39
Version : 0.11.0
Release : 1.fc39
URL : https://crates.io/crates/linux-loader
Summary : Linux kernel image loading crate
Description :
A Linux kernel image loading crate.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jan 28 2024 David Michael [fedora.dm0@gmail.com] - 0.11.0-1
- Update to version 0.11.0 (fedora#2259672)
* Fri Jan 26 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.10.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Jan 9 2024 David Michael [fedora.dm0@gmail.com] - 0.10.0-2
- Bump vm-memory to 0.14 for CVE-2023-50711
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-versionize-0.2.0-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-versionize
Product : Fedora 39
Version : 0.2.0
Release : 2.fc39
URL : https://crates.io/crates/versionize
Summary : Version tolerant serialization/deserialization framework
Description :
A version tolerant serialization/deserialization framework.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 27 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.2.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Jan 9 2024 David Michael [fedora.dm0@gmail.com] - 0.2.0-1
- Update to version 0.2.0 (rhbz#2256483)
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-kvm-ioctls-0.16.0-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-kvm-ioctls
Product : Fedora 39
Version : 0.16.0
Release : 2.fc39
URL : https://crates.io/crates/kvm-ioctls
Summary : Safe wrappers over KVM ioctls
Description :
Safe wrappers over KVM ioctls.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jan 26 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.16.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jan 11 2024 Sergio Lopez [slp@redhat.com] - 0.16.0-1
- Update to version 0.16.0; Fixes RHBZ#2256644
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: rust-event-manager-0.4.0-2.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : rust-event-manager
Product : Fedora 39
Version : 0.4.0
Release : 2.fc39
URL : https://crates.io/crates/event-manager
Summary : Abstractions for implementing event based systems
Description :
Abstractions for implementing event based systems.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jan 26 2024 Fedora Release Engineering [releng@fedoraproject.org] - 0.4.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Jan 9 2024 David Michael [fedora.dm0@gmail.com] - 0.4.0-1
- Update to version 0.4.0 (rhbz#2256617)
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: firecracker-1.6.0-6.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-04877592b7
2024-02-10 01:24:59.648730
--------------------------------------------------------------------------------

Name : firecracker
Product : Fedora 39
Version : 1.6.0
Release : 6.fc39
URL : https://firecracker-microvm.github.io/
Summary : Secure and fast microVMs for serverless computing
Description :
Firecracker is an open source virtualization technology that is purpose-built
for creating and managing secure, multi-tenant container and function-based
services that provide serverless operational models. Firecracker runs
workloads in lightweight virtual machines, called microVMs, which combine the
security and isolation properties provided by hardware virtualization
technology with the speed and flexibility of containers.

This package does not include all of the security features of an official
release. It is not production ready without additional sandboxing.

--------------------------------------------------------------------------------
Update Information:

Update rust-vmm components and their consumers to address CVE-2023-50711
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jan 28 2024 David Michael [fedora.dm0@gmail.com] - 1.6.0-6
- Sync linux-loader with the upstream version fixing the vmm-sys-util CVE.
* Wed Jan 24 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.6.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 19 2024 David Michael [fedora.dm0@gmail.com] - 1.6.0-4
- Backport the userfaultfd update for its unrecognized ioctl fixes.
* Fri Jan 19 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1.6.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jan 11 2024 David Michael [fedora.dm0@gmail.com] - 1.6.0-2
- Backport changes to update vmm-sys-util for CVE-2023-50711.
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-04877592b7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--



Fedora 39 Update: wireshark-4.0.12-1.fc39


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-b72131479b
2024-02-10 01:24:59.648606
--------------------------------------------------------------------------------

Name : wireshark
Product : Fedora 39
Version : 4.0.12
Release : 1.fc39
URL : http://www.wireshark.org/
Summary : Network traffic analyzer
Description :
Wireshark allows you to examine protocol data stored in files or as it is
captured from wired or wireless (WiFi or Bluetooth) networks, USB devices,
and many other sources. It supports dozens of protocol capture file formats
and understands more than a thousand protocols.

It has many powerful features including a rich display filter language
and the ability to reassemble multiple protocol packets in order to, for
example, view a complete TCP stream, save the contents of a file which was
transferred over HTTP or CIFS, or play back an RTP audio stream.

--------------------------------------------------------------------------------
Update Information:

New version 4.0.12. Includes fixes for CVE-2023-5371, CVE-2023-6174,
CVE-2023-6175, CVE-2024-0208.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb 1 2024 Michal Ruprich [mruprich@redhat.com] - 1:4.0.12-1
- New version 4.0.12
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2250153 - CVE-2023-5371 wireshark: RTPS dissector memory leak [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2250153
[ 2 ] Bug #2250154 - CVE-2023-6174 wireshark: SSH dissector invalid read of memory blocks [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2250154
[ 3 ] Bug #2250155 - CVE-2023-6175 wireshark: NetScreen File Parsing Heap-based Buffer Overflow [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2250155
[ 4 ] Bug #2256660 - CVE-2024-0208 wireshark: GVCP dissector crash via packet injection or crafted capture file [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2256660
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-b72131479b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--