collectl-4.3.20.3-1.fc43
- collectl-4.3.20.3-1.fc43
- handle insecure code properly in colmux
Changes:
6.08 2026-07-09 02:04:21Z
- [SECURITY] Reject input longer than 64 characters in parse_date() to prevent quadratic regex backtracking (a denial of service) on hostile date strings. Fixes CVE-2026-14741. (Olaf Alders)6.07 2026-06-25 15:12:09Z
- Add test with Time::Zone (GH#25) (Michal Josef Špaček) - Add test with bad Time::Zone string (GH#26) (Michal Josef Špaček) - Add tests with negative time (GH#26) (Michal Josef Špaček) - Replace all instances of \d with [0-9] in regular expressions to reject non-ASCII Unicode digits, with a regression test (GH#27) (Robert Rothenberg) - Reject malformed ISO 8601 timezones with a doubled colon (GH#31) (Olaf Alders) - Document day/month/year ordering for numeric dates (GH#32) (Olaf Alders)Changes:
6.08 2026-07-09 02:04:21Z
- [SECURITY] Reject input longer than 64 characters in parse_date() to prevent quadratic regex backtracking (a denial of service) on hostile date strings. Fixes CVE-2026-14741. (Olaf Alders)6.07 2026-06-25 15:12:09Z
- Add test with Time::Zone (GH#25) (Michal Josef Špaček) - Add test with bad Time::Zone string (GH#26) (Michal Josef Špaček) - Add tests with negative time (GH#26) (Michal Josef Špaček) - Replace all instances of \d with [0-9] in regular expressions to reject non-ASCII Unicode digits, with a regression test (GH#27) (Robert Rothenberg) - Reject malformed ISO 8601 timezones with a doubled colon (GH#31) (Olaf Alders) - Document day/month/year ordering for numeric dates (GH#32) (Olaf Alders)Update to 7.1.2.27
Update to 7.1.2.27
Update to 7.1.2.27
Update to 3.11.0
Update to 3.11.0
Update to 3.11.0
Update to 3.11.0
Security fix for CVE-2026-58459
Security fix for CVE-2026-58459
Fixes CVE-2026-58101 and CVE-2026-58102
Fixes CVE-2026-58101 and CVE-2026-58102
Fixes CVE-2026-58101 and CVE-2026-58102
Fixes CVE-2026-58101 and CVE-2026-58102
Update to 3.28.0
It fixes CVE-2026-57156, CVE-2026-57157 and CVE-2026-57158.
Update to 3.28.0
It fixes CVE-2026-57156, CVE-2026-57157 and CVE-2026-57158.
update to version 2.24.0 Fix CVE-2026-54590: Unauthorized file modification via authorized-keys directory escape Fix CVE-2026-54591: Arbitrary file write via path traversal in SCP client