Fedora 30: Yaws Security Update - Critical Enhancements and Fixes

HTTP 1.0 and HTTP 1.1 web server capable of both static content page

delivery and dynamic content generation using embedded Erlang code in the

HTML pages. It provides virtual hosting capabilities and implements

HTTP tracing and other debugging functionality such as interactive

interpreter environment. Performance can be boosted with built-in support

for RAM caching and streaming capabilities of dynamically generated

content. Among security features are SSL and support for WWW-Authenticated

pages.

* Yaws ver. 2.0.6

[ 1 ] Bug #1606767 - yaws: FTBFS in Fedora rawhide

https://bugzilla.redhat.com/show_bug.cgi?id=1606767

[ 2 ] Bug #1357922 - CVE-2016-1000108 yaws: sets environmental variable based on user supplied Proxy request header [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1357922

[ 3 ] Bug #1676256 - yaws: FTBFS in Fedora rawhide/f30

https://bugzilla.redhat.com/show_bug.cgi?id=1676256

su -c 'dnf upgrade --advisory FEDORA-2019-aa7f37cd4d' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/