-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-7473744de1 2020-11-28 02:02:44.954673 --------------------------------------------------------------------------------
Name : c-ares Product : Fedora 33 Version : 1.17.0 Release : 1.fc33 URL : http://c-ares.haxx.se/ Summary : A library that performs asynchronous DNS operations Description : c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT.
-------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2020-8277. -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 17 2020 Tom Callaway spot@fedoraproject.org - 1.17.0-1 - update to 1.17.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1898554 - CVE-2020-8277 c-ares: ares_parse_{a,aaaa}_reply() insufficient naddrttls validation DoS https://bugzilla.redhat.com/show_bug.cgi?id=1898554 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-7473744de1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------