Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Fedora 37 Planning To Use RPM 4.18 For Better Security

Written by Michael Larabel in Fedora on 10 April 2022 at 05:08 AM EDT. Add A Comment

FEDORA

In addition to removing legacy X.Org drivers, deprecating legacy BIOS support, and signing RPM contents another Fedora 37 change proposal submitted this past week is for upgrading against RPM 4.18.

Fedora 37 is looking to make use of the upcoming RPM 4.18 release for the RPM Package Manager. Making RPM 4.18 a bit more notable than most releases is this version addressing "a whole class of symlink handling related security issues", some of which CVEs go back to last year.

Besides beefing up security, RPM 4.18 has more robust and secure --restore functionality, a new interactive shell for working with embedded macros and embedded Lua, a new rpmuncompress CLI tool for unpacking multiple sources, various macro improvements, and other fixes and security improvements.

Downloads and more details on the plans for using RPM 4.18 with Fedora 37 can be found via the Fedora Wiki. More information on this forthcoming RPM Package Manager update via RPM.org.

Add A Comment

Related News

Fedora 42 Looking To Package Intel SGX Software Stack

Fedora 42 Aims To Enhance The Windows Subsystem For Linux Experience

Fedora Stakeholders Debate Concerns Over "Karma" Term For Their Updates System

Fedora KDE Desktop Spin Promoted To Same Tier As GNOME-Based Fedora Workstation

Fedora Stakeholders Debate Idea Of "-O3" Optimized Packages

Fedora 41 Releases Today With Many Shiny New Features

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts

Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels

Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd

COSMIC Alpha 4 Released For System76's Rust-Based Desktop

Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal

Rustls Multi-Threaded Performance Is Battering OpenSSL

How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs

GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd