Category Archives: Advisories

USN-6722-1: Django vulnerability

April 8, 2024

Read Time:12 Second

Simon Charette discovered that the password reset functionality in
Django used a Unicode case insensitive query to retrieve accounts
associated with an email address. An attacker could possibly use this
to obtain password reset tokens and hijack accounts.

Advisories

python-cbor2-5.6.2-1.fc38

April 8, 2024

Read Time:8 Second

FEDORA-2024-0c9aaeb447

Packages in this update:

python-cbor2-5.6.2-1.fc38

Update description:

Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361)

Advisories

python-cbor2-5.6.2-1.fc39

April 8, 2024

Read Time:8 Second

FEDORA-2024-4bbd13d425

Packages in this update:

python-cbor2-5.6.2-1.fc39

Update description:

Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361)

Advisories

python-cbor2-5.6.2-1.fc40

April 8, 2024

Read Time:8 Second

FEDORA-2024-619ac47ce9

Packages in this update:

python-cbor2-5.6.2-1.fc40

Update description:

Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361)

Advisories

python-cbor2-5.6.2-1.fc41

April 8, 2024

Read Time:43 Second

FEDORA-2024-e63fc9eb58

Packages in this update:

python-cbor2-5.6.2-1.fc41

Update description:

Automatic update for python-cbor2-5.6.2-1.fc41.

Changelog

* Mon Apr 8 2024 Fabian Affolter <mail@fabian-affolter.ch> – 5.6.2-1
– Update to latest upstream release (closes rhbz#2261550, closes rhbz#2245361)
– Fixes CVE-2024-26134 (closes rhbz#2265036, closes rhbz#bug 2265035)
* Sat Feb 3 2024 Fabian Affolter <mail@fabian-affolter.ch> – 5.6.1-1
– Update to latest upstream release 5.6.1 (closes rhbz#2245361)
* Fri Jan 26 2024 Fedora Release Engineering <releng@fedoraproject.org> – 5.1.2-14
– Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Mon Jan 22 2024 Fedora Release Engineering <releng@fedoraproject.org> – 5.1.2-13
– Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild