——————————————————————————–
Fedora Update Notification
FEDORA-2018-0d6a80f496
2018-01-23 21:16:49.690345
——————————————————————————–

Name : mariadb
Product : Fedora 26
Version : 10.1.30
Release : 1.fc26
URL : http://mariadb.org
Summary : A community developed branch of MySQL
Description :
MariaDB is a community developed branch of MySQL.
MariaDB is a multi-user, multi-threaded SQL database server.
It is a client/server implementation consisting of a server daemon (mysqld)
and many different client programs and libraries. The base package
contains the standard MariaDB/MySQL client programs and generic MySQL files.

——————————————————————————–
Update Information:

**Update to 10.1.30** sysusers and tmpfiles added by upstream **Release
notes:** https://mariadb.com/kb/en/library/mariadb-10130-release-notes/
**CVE’s fixed:** CVE-2017-15365
——————————————————————————–
References:

[ 1 ] Bug #1524235 – CVE-2017-15365 mariadb: Replication in sql/event_data_objects.cc occurs before ACL checks [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1524235
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade mariadb’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
 

——————————————————————————–

Fedora Update Notification

FEDORA-2018-909707fc68

2018-01-23 21:16:49.690288

——————————————————————————–

 

Name        : python-bottle

Product     : Fedora 26

Version     : 0.12.13

Release     : 1.fc26

URL         : http://bottlepy.org

Summary     : Fast and simple WSGI-framework for small web-applications

Description :

Bottle is a fast and simple micro-framework for small web-applications.

It offers request dispatching (Routes) with URL parameter support, Templates,

a built-in HTTP Server and adapters for many third party WSGI/HTTP-server and

template engines. All in a single file and with no dependencies other than the

Python Standard Library.

 

——————————————————————————–

Update Information:

 

Update to 0.12.13

——————————————————————————–

References:

 

  [ 1 ] Bug #1405417 – CVE-2016-9964 python-bottle: redirect() doesn’t filter “\r\n” which allows for CRLF attack [fedora-all]

        https://bugzilla.redhat.com/show_bug.cgi?id=1405417

——————————————————————————–

 

This update can be installed with the “dnf” update program. Use

su -c ‘dnf upgrade python-bottle’ at the command line.

For more information, refer to the dnf documentation available at

http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

 

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

——————————————————————————–

_______________________________________________

package-announce mailing list — package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2018-6cb474b8ff
2018-01-23 21:42:17.541788
——————————————————————————–

Name : python-bottle
Product : Fedora 27
Version : 0.12.13
Release : 1.fc27
URL : http://bottlepy.org
Summary : Fast and simple WSGI-framework for small web-applications
Description :
Bottle is a fast and simple micro-framework for small web-applications.
It offers request dispatching (Routes) with URL parameter support, Templates,
a built-in HTTP Server and adapters for many third party WSGI/HTTP-server and
template engines. All in a single file and with no dependencies other than the
Python Standard Library.

——————————————————————————–
Update Information:

Update to 0.12.13
——————————————————————————–
References:

[ 1 ] Bug #1405417 – CVE-2016-9964 python-bottle: redirect() doesn’t filter “\r\n” which allows for CRLF attack [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1405417
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade python-bottle’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org