——————————————————————————–
Fedora Update Notification
FEDORA-2018-0d6a80f496
2018-01-23 21:16:49.690345
——————————————————————————–
Name : mariadb
Product : Fedora 26
Version : 10.1.30
Release : 1.fc26
URL : http://mariadb.org
Summary : A community developed branch of MySQL
Description :
MariaDB is a community developed branch of MySQL.
MariaDB is a multi-user, multi-threaded SQL database server.
It is a client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MariaDB/MySQL client programs and generic MySQL files.
——————————————————————————–
Update Information:
**Update to 10.1.30** sysusers and tmpfiles added by upstream **Release
notes:** https://mariadb.com/kb/en/library/mariadb-10130-release-notes/
**CVE’s fixed:** CVE-2017-15365
——————————————————————————–
References:
[ 1 ] Bug #1524235 – CVE-2017-15365 mariadb: Replication in sql/event_data_objects.cc occurs before ACL checks [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1524235
——————————————————————————–
This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade mariadb’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
——————————————————————————–
Fedora Update Notification
FEDORA-2018-909707fc68
2018-01-23 21:16:49.690288
——————————————————————————–
Name : python-bottle
Product : Fedora 26
Version : 0.12.13
Release : 1.fc26
URL : http://bottlepy.org
Summary : Fast and simple WSGI-framework for small web-applications
Description :
Bottle is a fast and simple micro-framework for small web-applications.
It offers request dispatching (Routes) with URL parameter support, Templates,
a built-in HTTP Server and adapters for many third party WSGI/HTTP-server and
template engines. All in a single file and with no dependencies other than the
Python Standard Library.
——————————————————————————–
Update Information:
Update to 0.12.13
——————————————————————————–
References:
[ 1 ] Bug #1405417 – CVE-2016-9964 python-bottle: redirect() doesn’t filter “\r\n” which allows for CRLF attack [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1405417
——————————————————————————–
This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade python-bottle’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
——————————————————————————–
Fedora Update Notification
FEDORA-2018-6cb474b8ff
2018-01-23 21:42:17.541788
——————————————————————————–
Name : python-bottle
Product : Fedora 27
Version : 0.12.13
Release : 1.fc27
URL : http://bottlepy.org
Summary : Fast and simple WSGI-framework for small web-applications
Description :
Bottle is a fast and simple micro-framework for small web-applications.
It offers request dispatching (Routes) with URL parameter support, Templates,
a built-in HTTP Server and adapters for many third party WSGI/HTTP-server and
template engines. All in a single file and with no dependencies other than the
Python Standard Library.
——————————————————————————–
Update Information:
Update to 0.12.13
——————————————————————————–
References:
[ 1 ] Bug #1405417 – CVE-2016-9964 python-bottle: redirect() doesn’t filter “\r\n” which allows for CRLF attack [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1405417
——————————————————————————–
This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade python-bottle’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org