Read Time:28 Second

FEDORA-2024-632b468c59

Packages in this update:

rust-rustls-0.23.17-1.fc40
rust-zlib-rs-0.4.0-1.fc40

Update description:

Update the rustls crate to version 0.23.17.
Update the zlib-rs crate to version 0.4.0.

The update to zlib-rs v0.4.0 also addresses CVE-2024-11249 (stack overflow during decompression with malicious input). This issue had no actual impact in Fedora, because no applications yet use the the zlib-rs feature of rustls and rustls is the only dependent package of zlib-rs.

Read More