Fedora 34: cyrus-sasl 2022-8cc64f73d0 | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-8cc64f73d0
2022-03-09 19:15:14.944732
--------------------------------------------------------------------------------

Name        : cyrus-sasl
Product     : Fedora 34
Version     : 2.1.27
Release     : 9.fc34
URL         : https://www.cyrusimap.org/sasl/
Summary     : The Cyrus SASL library
Description :
The cyrus-sasl package contains the Cyrus implementation of SASL.
SASL is the Simple Authentication and Security Layer, a method for
adding authentication support to connection-based protocols.

--------------------------------------------------------------------------------
Update Information:

Security fix CVE-2022-24407 (#2057334)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Feb 23 2022 Jakub Jelen  - 2.1.27-9
- Fix CVE-2022-24407 (#2057334)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2055326 - CVE-2022-24407 cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands
        https://bugzilla.redhat.com/show_bug.cgi?id=2055326
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-8cc64f73d0' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 34: cyrus-sasl 2022-8cc64f73d0

March 9, 2022

Summary

The cyrus-sasl package contains the Cyrus implementation of SASL.

SASL is the Simple Authentication and Security Layer, a method for

adding authentication support to connection-based protocols.

Update Information:

Security fix CVE-2022-24407 (#2057334)

Change Log

* Wed Feb 23 2022 Jakub Jelen - 2.1.27-9 - Fix CVE-2022-24407 (#2057334)

References

[ 1 ] Bug #2055326 - CVE-2022-24407 cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands https://bugzilla.redhat.com/show_bug.cgi?id=2055326

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-8cc64f73d0' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : cyrus-sasl
Product : Fedora 34
Version : 2.1.27
Release : 9.fc34
URL : https://www.cyrusimap.org/sasl/
Summary : The Cyrus SASL library

News

Advisories

HOWTOs

Features

Here’s Why You Should Get Started With Open Source Log Analytics & Monitoring Today!
An Enterprise’s Guide To Strengthening Linux Cloud Security
Keeping Your Private Files Private: An Introduction to GNU Privacy Guard
Complete Guide to Ethical Hacking
Authoritative Guide on Linux Disk Encryption

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy