[SECURITY] Fedora 32 Update: mingw-c-ares-1.17.1-1.fc32

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-afed2b904e 2021-02-24 20:43:56.301355 --------------------------------------------------------------------------------

Name : mingw-c-ares Product : Fedora 32 Version : 1.17.1 Release : 1.fc32 URL : http://c-ares.haxx.se/ Summary : Library that performs asynchronous DNS operations Description : c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT.

-------------------------------------------------------------------------------- Update Information:

Update to 1.17.1, security fix for CVE-2020-8277 -------------------------------------------------------------------------------- ChangeLog:

* Sun Feb 14 2021 Franti��ek Dvo����k valtri@civ.zcu.cz - 1.17.1-1 - Update to 1.17.1 - Security fix for CVE-2020-8277 - Patch to fix build * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 1.13.0-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild * Sat Aug 1 2020 Fedora Release Engineering releng@fedoraproject.org - 1.13.0-9 - Second attempt - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild * Tue Jul 28 2020 Fedora Release Engineering releng@fedoraproject.org - 1.13.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1898554 - CVE-2020-8277 c-ares: ares_parse_{a,aaaa}_reply() insufficient naddrttls validation DoS https://bugzilla.redhat.com/show_bug.cgi?id=1898554 --------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-afed2b904e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------