[SECURITY] Fedora 33 Update: c-ares-1.17.0-1.fc33

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2020-7473744de1 2020-11-28 02:02:44.954673 -------------------------------------------------------------------------------- Name : c-ares Product : Fedora 33 Version : 1.17.0 Release : 1.fc33 URL : http://c-ares.haxx.se/ Summary : A library that performs asynchronous DNS operations Description : c-ares is a C library that performs DNS requests and name resolves asynchronously. c-ares is a fork of the library named 'ares', written by Greg Hudson at MIT. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2020-8277. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 17 2020 Tom Callaway <spot(a)fedoraproject.org&gt; - 1.17.0-1 - update to 1.17.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1898554 - CVE-2020-8277 c-ares: ares_parse_{a,aaaa}_reply() insufficient naddrttls validation DoS https://bugzilla.redhat.com/show_bug.cgi?id=1898554 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-7473744de1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------