Sicherheit: Mangelnde Prüfung von Zertifikaten in axel
Aktuelle Meldungen Distributionen
Name: Mangelnde Prüfung von Zertifikaten in axel
ID: FEDORA-2021-5214bd8f14
Distribution: Fedora
Plattformen: Fedora 34
Datum: Mi, 5. Mai 2021, 07:46
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13614
Applikationen: Axel


Fedora Update Notification
2021-05-05 01:20:25.877561

Name : axel
Product : Fedora 34
Version : 2.17.10
Release : 1.fc34
URL : https://github.com/axel-download-accelerator/axel
Summary : Light command line download accelerator for Linux and Unix
Description :
Axel tries to accelerate HTTP/FTP downloading process by using
multiple connections for one file. It can use multiple mirrors for a
download. Axel has no dependencies and is lightweight, so it might
be useful as a wget clone on byte-critical systems.

Update Information:

Update to new release. 2.17.8+ include the security fix for CVE-2020-13614
axel: TLS implementation lacks hostname verification leading to possible
confidentiality breach

* Mon Apr 26 2021 Frantisek Zatloukal <fzatlouk@redhat.com> - 2.17.10-1
- Updated to axel-2.17.10

[ 1 ] Bug #1848468 - CVE-2020-13614 axel: TLS implementation lacks hostname
verification leading to possible confidentiality breach [fedora-all]

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-5214bd8f14' at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
Pro-Linux @Facebook
Neue Nachrichten