Read Time:28 Second

FEDORA-EPEL-2024-3672733748

Packages in this update:

rust-rustls-0.23.17-1.el9
rust-zlib-rs-0.4.0-1.el9

Update description:

Update the rustls crate to version 0.23.17.
Update the zlib-rs crate to version 0.4.0.

The update to zlib-rs v0.4.0 also addresses CVE-2024-11249 (stack overflow during decompression with malicious input). This issue had no actual impact in Fedora, because no applications yet use the the zlib-rs feature of rustls and rustls is the only dependent package of zlib-rs.

Read More