You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa pandoc-citeproc

Sigurnosni nedostaci programskog paketa pandoc-citeproc

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2018-08-31 21:16:09.272155

Name : pandoc-citeproc
Product : Fedora 28
Version :
Release : 4.fc28
Summary : Citeproc support for pandoc
Description :
The pandoc-citeproc library exports functions for using the citeproc system
with pandoc. It relies on citeproc-hs, a library for rendering bibliographic
reference citations into a variety of styles using a macro language called
Citation Style Language (CSL). More details on CSL can be found here:

Currently this package includes a heavily revised copy of the citeproc-hs code.
When citeproc-hs is updated to be compatible, this package will simply depend
on citeproc-hs.

This package also contains an executable: pandoc-citeproc, which works as a
pandoc filter, and also has a mode for converting bibliographic databases a
YAML format suitable for inclusion in pandoc YAML metadata.

Update Information:

Security fix for CVE-2018-10773 CVE-2018-10774 CVE-2018-10775 (in bibutils C
library bundled with ghc-hs-bibutils)

* Fri Jul 13 2018 Fedora Release Engineering <> –
– Rebuilt for
* Tue Mar 6 2018 Adam Williamson <> –
– Rebuild for ghc-conduit-extra bump

[ 1 ] Bug #1577258 – CVE-2018-10773 bibutils: NULL pointer deference in addsn function in serialno.c in libbibcore.a

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-33fef25ed1’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorZvonimir Bosnjak
Cert idNCERT-REF-2018-09-0001-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa xen

Otkriveni su sigurnosni nedostaci u programskom paketu xen za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja....