-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2021-e01c1fe4cc 2021-03-17 02:17:03.380997 --------------------------------------------------------------------------------
Name : golang-github-pires-proxyproto Product : Fedora 33 Version : 0.5.0 Release : 1.fc33 URL : https://github.com/pires/go-proxyproto Summary : Go library implementation of the PROXY protocol, versions 1 and 2 Description :
A Go library implementation of the PROXY protocol, versions 1 and 2.
-------------------------------------------------------------------------------- Update Information:
Update to 0.5.0 Security fix for CVE-2021-23351 -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 9 2021 Robert-Andr�� Mauchin zebob.m@gmail.com - 0.5.0-1 - Update to 0.5.0 - Security fix for CVE-2021-23351 - Fix: rhbz#1936472 - Fix: rhbz#1936473 * Tue Jan 26 2021 Fedora Release Engineering releng@fedoraproject.org - 0.4.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1936472 - CVE-2021-23351 golang-github-pires-proxyproto: improper input validation in parseVersion1 function can lead to DoS https://bugzilla.redhat.com/show_bug.cgi?id=1936472 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-e01c1fe4cc' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
package-announce@lists.fedoraproject.org