Read Time:29 Second

FEDORA-EPEL-2024-21e104619e

Packages in this update:

rust-rustls-0.23.17-1.el10_0
rust-zlib-rs-0.4.0-1.el10_0

Update description:

Update the rustls crate to version 0.23.17.
Update the zlib-rs crate to version 0.4.0.

The update to zlib-rs v0.4.0 also addresses CVE-2024-11249 (stack overflow during decompression with malicious input). This issue had no actual impact in Fedora, because no applications yet use the the zlib-rs feature of rustls and rustls is the only dependent package of zlib-rs.

Read More