Fedora Account System
Red Hat Associate
Red Hat Customer
This issue was addresses by updating incorrect URLSession file descriptors management logic to match Swift 5.0. This issue is fixed in Swift 5.1.1 for Ubuntu. Incorrect management of file descriptors in URLSession could lead to inadvertent data disclosure. References: https://support.apple.com/en-us/HT210647
Created swift tracking bugs for this issue: Affects: epel-6 [bug 1902140]
Created swift-lang tracking bugs for this issue: Affects: epel-8 [bug 1902987] Affects: fedora-all [bug 1902988]
Swift 5.3.1 is the currently-available version. Is this bug report still valid?
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
In reply to comment #3: > Swift 5.3.1 is the currently-available version. Is this bug report still > valid? Hi, yes this is a reported vulnerability with cve so we need to file the flaw for the vulnerable component which we ship either in our enterprise or community projects.