Thanks for bringing this to my attention - I had no idea Fedora would
let something so serious be unfixed for so long, as I kinda assumed
Fedora is on top of security updates. Time to immediately delete
openh264 indeed! However:
Am 29.04.25 um 19:21 schrieb Leigh Scott:
sudo dnf swap *\openh264\* noopenh264 --allowerasing
Unfortunately that does not seem to work on f42:
$ sudo dnf swap \*openh264\* noopenh264 --allowerasing
Updating and loading repositories:
Repositories loaded.
Problem: cannot install the best candidate for the job
- conflicting requests
Package Arch Version Repository
Size
Reinstalling:
openh264 x86_64 2.4.1-2.fc42 fedora-cisco-op
1.1 MiB
replacing openh264 x86_64 2.4.1-2.fc42 fedora-cisco-op
1.1 MiB
Transaction Summary:
Reinstalling: 1 package
Replacing: 1 package
Total size of inbound packages is 419 KiB. Need to download 419 KiB.
After this operation, 0 B extra will be used (install 1 MiB, remove 1 MiB).
Is this ok [y/N]:
Any other way to close this wide open security hole?
--
Jonathan
--
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue
