--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-c42ea059d0
2024-03-28 00:15:36.328468
--------------------------------------------------------------------------------

Name        : ofono
Product     : Fedora 40
Version     : 2.5
Release     : 1.fc40
URL         : https://corpredirect.intel.com/Redirector/404Redirector.aspx
Summary     : Open Source Telephony
Description :
oFono.org is a place to bring developers together around designing an
infrastructure for building mobile telephony (GSM/UMTS) applications.
oFono includes a high-level D-Bus API for use by telephony applications.
oFono also includes a low-level plug-in API for integrating with telephony
stacks, cellular modems and storage back-ends.

--------------------------------------------------------------------------------
Update Information:

Update to v2.5
--------------------------------------------------------------------------------
ChangeLog:

* Mon Mar 18 2024 Artur Frenszek-Iwicki  - 2.5-1
- Update to v2.5
* Thu Jan 25 2024 Fedora Release Engineering  - 1.34-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Sun Jan 21 2024 Fedora Release Engineering  - 1.34-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jul 20 2023 Fedora Release Engineering  - 1.34-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Jan 19 2023 Fedora Release Engineering  - 1.34-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Fri Jul 22 2022 Fedora Release Engineering  - 1.34-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2255387 - CVE-2023-2794 ofono: SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability within the decode_deliver() function
        https://bugzilla.redhat.com/show_bug.cgi?id=2255387
  [ 2 ] Bug #2255394 - CVE-2023-4232 ofono: SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability within the decode_status_report() function
        https://bugzilla.redhat.com/show_bug.cgi?id=2255394
  [ 3 ] Bug #2255396 - CVE-2023-4233 ofono: SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability within the sms_decode_address_field() function
        https://bugzilla.redhat.com/show_bug.cgi?id=2255396
  [ 4 ] Bug #2255399 - CVE-2023-4234 ofono: SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability within the decode_submit_report() function
        https://bugzilla.redhat.com/show_bug.cgi?id=2255399
  [ 5 ] Bug #2255402 - CVE-2023-4235 ofono: SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability within the decode_deliver_report() function
        https://bugzilla.redhat.com/show_bug.cgi?id=2255402
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-c42ea059d0' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
--
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Do not reply to spam, report it: https://pagure.io/login/