Login
Newsletter
Werbung

Sicherheit: Preisgabe von Informationen in prosody
Aktuelle Meldungen Distributionen
Name: Preisgabe von Informationen in prosody
ID: FEDORA-2021-fe9513e089
Distribution: Fedora
Plattformen: Fedora 34
Datum: Do, 12. August 2021, 08:11
Referenzen: https://bugzilla.redhat.com/show_bug.cgi?id=1989535
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37601
Applikationen: Prosody

Originalnachricht

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2021-fe9513e089
2021-08-12 01:05:26.163733
-------------------------------------------------------------------------------
-

Name : prosody
Product : Fedora 34
Version : 0.11.10
Release : 1.fc34
URL : https://prosody.im/
Summary : Flexible communications server for Jabber/XMPP
Description :
Prosody is a flexible communications server for Jabber/XMPP written in Lua.
It aims to be easy to use, and light on resources. For developers it aims
to be easy to extend and give a flexible system on which to rapidly develop
added functionality, or prototype new protocols.

-------------------------------------------------------------------------------
-
Update Information:

Prosody 0.11.10 =============== Upstream is pleased to announce a new minor
release from their stable branch. This release primarily fixes CVE-2021-37601,
a remote information disclosure vulnerability. See the previously released
advisory for details. Upstream recommends that all deployments upgrade if they
have not yet applied the mitigation described in the advisory. Security
-------- * MUC: Fix logic for access to affiliation lists CVE-2021-37601:
https://prosody.im/security/advisory_20210722/ Minor changes ------------- *
prosodyctl: Add `limits` to known globals to warn about misplacing it *
util.ip: Fix netmask for link-local address range * mod_pep: Remove obsolete
node restoration code * util.pubsub: Fix traceback if node data not
initialized
-------------------------------------------------------------------------------
-
ChangeLog:

* Tue Aug 3 2021 Robert Scheck <robert@fedoraproject.org> 0.11.10-1
- Upgrade to 0.11.10 (#1989535)
* Fri Jul 23 2021 Fedora Release Engineering <releng@fedoraproject.org> -
0.11.9-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Thu May 20 2021 Pete Walter <pwalter@fedoraproject.org> - 0.11.9-3
- Rebuild for ICU 69
* Wed May 19 2021 Pete Walter <pwalter@fedoraproject.org> - 0.11.9-2
- Rebuild for ICU 69
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1989535 - prosody-0.11.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1989535
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-fe9513e089' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung