-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2019-5fecd4c331 2019-11-28 00:28:36.161034 --------------------------------------------------------------------------------
Name : libmodbus Product : Fedora EPEL 7 Version : 3.0.8 Release : 1.el7 URL : http://www.libmodbus.org/ Summary : A Modbus library Description : libmodbus is a C library designed to provide a fast and robust implementation of the Modbus protocol. It runs on Linux, Mac OS X, FreeBSD, QNX and Windows.
This package contains the libmodbus shared library.
-------------------------------------------------------------------------------- Update Information:
New upstream release. Security fix for CVE-2019-14462 and CVE-2019-14463 -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 12 2019 Eric Sandeen sandeen@sandeen.net - 3.0.8-1 - New upstream release - Addresses CVE-2019-14462 and CVE-2019-14463 * Fri Feb 26 2016 Eric Sandeen sandeen@sandeen.net - 3.0.6-1 - New upstream release - Fix remote buffer overflow vulnerability on write requests * Thu Feb 4 2016 Fedora Release Engineering releng@fedoraproject.org - 3.0.5-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Wed Jun 17 2015 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.0.5-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sun Aug 17 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.0.5-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.0.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Dec 28 2013 John Morris john@zultron.com - 3.0.5-2 - Fix 'bogus date in %changelog' warnings - Run aclocal and automake to fix fc21 autoconf problems * Thu Dec 19 2013 John Morris john@zultron.com - 3.0.5-1 - new upstream release - new Fedora EPEL6 branch * Sat Aug 3 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.0.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Thu Feb 14 2013 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.0.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 3.0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri May 25 2012 St��phane Raimbault stephane.raimbault@gmail.com - 3.0.3-1 - new upstream release * Mon Jan 16 2012 St��phane Raimbault stephane.raimbault@gmail.com - 3.0.2-1 - new upstream release * Sat Jul 23 2011 St��phane Raimbault stephane.raimbault@gmail.com - 3.0.1-2 - package reviewed by Peter Lemenkov lemenkov@gmail.com and Veeti Paananen veeti.paananen@rojekti.fi of Fedora Quality Assurance team * Mon Jul 18 2011 St��phane Raimbault stephane.raimbault@gmail.com - 3.0.1-1 - new upstream release * Mon Jul 11 2011 St��phane Raimbault stephane.raimbault@gmail.com - 3.0.0-1 - revert the license to LGPLv2.1+ - new spec file generated by autoconf - add documentation, devel package and various changes * Sun Jun 5 2011 St��phane Raimbault stephane.raimbault@gmail.com - 2.9.4-1 - new upstream release * Mon Jan 10 2011 St��phane Raimbault stephane.raimbault@gmail.com - 2.9.3-1 - new upstream release * Tue Oct 5 2010 St��phane Raimbault stephane.raimbault@gmail.com - 2.9.2-1 - new upstream release * Wed Jul 2 2008 St��phane Raimbault stephane.raimbault@gmail.com - 2.0.1-1 - new upstream release * Fri May 2 2008 St��phane Raimbault stephane.raimbault@gmail.com - 2.0.0-1 - integrate extern_for_cpp in upstream. - update the license to version LGPL v3. * Wed Apr 30 2008 Todd Denniston Todd.Denniston@ssa.crane.navy.mil - 1.9.0-2 - get the license corrected in the spec file. - add a URL for where to find libmodbus. - tweak the summary and description. * Tue Apr 29 2008 Todd Denniston Todd.Denniston@ssa.crane.navy.mil - 1.9.0-1 - upgrade to latest upstream (pre-release) - port extern_for_cpp patch to 1.9.0 * Tue Apr 29 2008 Todd Denniston Todd.Denniston@ssa.crane.navy.mil - 1.2.4-2_tad - add a patch to allow compiling with c++ code. * Mon Apr 28 2008 Todd Denniston Todd.Denniston@ssa.crane.navy.mil - 1.2.4-1_tad - build spec file. - include patch for controling error-treat. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1771379 - CVE-2019-14462 libmodbus: out-of-bounds read in MODBUS_FC_WRITE_MULTIPLE_COILS https://bugzilla.redhat.com/show_bug.cgi?id=1771379 [ 2 ] Bug #1771383 - CVE-2019-14463 libmodbus: out-of-bounds read in MODBUS_FC_WRITE_MULTIPLE_COILS https://bugzilla.redhat.com/show_bug.cgi?id=1771383 --------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use su -c 'yum update libmodbus' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html
All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
epel-package-announce@lists.fedoraproject.org