Sicherheit: Mehrere Probleme in mariadb-connector-c

Lesezeichen hinzufügen

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2020-35f52d9370
2020-06-16 01:25:41.304833
-------------------------------------------------------------------------------
-

Name : mariadb-connector-c
Product : Fedora 32
Version : 3.1.8
Release : 1.fc32
URL : http://mariadb.org/
Summary : The MariaDB Native Client library (C driver)
Description :
The MariaDB Native Client library (C driver) is used to connect applications
developed in C/C++ to MariaDB and MySQL databases.

-------------------------------------------------------------------------------
-
Update Information:

**MariaDB 10.4.13 , Galera 26.4.4 , MariaDB CONC/C 3.1.8** Release notes:
https://mariadb.com/kb/en/mariadb-10413-release-notes/
https://mariadb.com/kb/en/mariadb-connector-c-318-release-notes/
-------------------------------------------------------------------------------
-
ChangeLog:

* Thu May 14 2020 Lukas Javorsky <ljavorsk@redhat.com> - 3.1.8-1
- Rebase to 3.1.8
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1546787 - FTBFS: -Wp,-D_GLIBCXX_ASSERTIONS
https://bugzilla.redhat.com/show_bug.cgi?id=1546787
[ 2 ] Bug #1830118 - CVE-2020-2752 CVE-2020-2760 CVE-2020-2812 CVE-2020-2814
mariadb: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1830118
[ 3 ] Bug #1839828 - CVE-2020-13249 mariadb-connector-c: Improper validation
of content in a OK packet received from a client [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1839828
[ 4 ] Bug #1840649 - CVE-2020-2752 mariadb-connector-c: mysql: C API
unspecified vulnerability (CPU Apr 2020) [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1840649
[ 5 ] Bug #1843795 - CVE-2020-13249 mariadb: mariadb-connector-c: Improper
validation of content in a OK packet received from server [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1843795
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-35f52d9370' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org