Fedora 37: containernetworking-plugins 2023-c0149844e2 | LinuxSecur...

What Are You Looking For?

Popular Tags

Contribute
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-c0149844e2
2023-03-18 04:57:44.403009
--------------------------------------------------------------------------------

Name        : containernetworking-plugins
Product     : Fedora 37
Version     : 1.1.1
Release     : 16.fc37
URL         : https://github.com/containernetworking/plugins
Summary     : Libraries for writing CNI plugin
Description :
The CNI (Container Network Interface) project consists of a specification
and libraries for writing plugins to configure network interfaces in Linux
containers, along with a number of supported plugins. CNI concerns itself
only with network connectivity of containers and removing allocated resources
when the container is deleted.

--------------------------------------------------------------------------------
Update Information:

Resolves: 2161274, 2163068 - Rebuild for CVE-2022-41717
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  8 2023 Lokesh Mandvekar  - 1.1.1-16
- Resolves: #2161274, #2163068 - Rebuild for CVE-2022-41717
* Mon Mar  6 2023 Lokesh Mandvekar  - 1.1.1-15
- migrated to SPDX license
* Thu Jan 19 2023 Fedora Release Engineering  - 1.1.1-14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
* Fri Oct 28 2022 Troy Dawson  - 1.1.1-13
- Add ExclusiveArch
* Mon Oct 10 2022 Lokesh Mandvekar  - 1.1.1-12
- remove debbuild macros to comply with Fedora guidelines
* Thu Aug 18 2022 Lokesh Mandvekar  - 1.1.1-11
- no bundled provides for debbuild
* Wed Aug 17 2022 Lokesh Mandvekar  - 1.1.1-10
- use easier tag macros to make both fedora and debbuild happy
* Tue Aug 16 2022 Lokesh Mandvekar  - 1.1.1-9
- enable debbuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2161274 - CVE-2022-41717 golang: net/https: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests
        https://bugzilla.redhat.com/show_bug.cgi?id=2161274
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-c0149844e2' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue

Fedora 37: containernetworking-plugins 2023-c0149844e2

March 18, 2023
Resolves: 2161274, 2163068 - Rebuild for CVE-2022-41717

Summary

The CNI (Container Network Interface) project consists of a specification

and libraries for writing plugins to configure network interfaces in Linux

containers, along with a number of supported plugins. CNI concerns itself

only with network connectivity of containers and removing allocated resources

when the container is deleted.

Update Information:

Resolves: 2161274, 2163068 - Rebuild for CVE-2022-41717

Change Log

* Wed Mar 8 2023 Lokesh Mandvekar - 1.1.1-16 - Resolves: #2161274, #2163068 - Rebuild for CVE-2022-41717 * Mon Mar 6 2023 Lokesh Mandvekar - 1.1.1-15 - migrated to SPDX license * Thu Jan 19 2023 Fedora Release Engineering - 1.1.1-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Oct 28 2022 Troy Dawson - 1.1.1-13 - Add ExclusiveArch * Mon Oct 10 2022 Lokesh Mandvekar - 1.1.1-12 - remove debbuild macros to comply with Fedora guidelines * Thu Aug 18 2022 Lokesh Mandvekar - 1.1.1-11 - no bundled provides for debbuild * Wed Aug 17 2022 Lokesh Mandvekar - 1.1.1-10 - use easier tag macros to make both fedora and debbuild happy * Tue Aug 16 2022 Lokesh Mandvekar - 1.1.1-9 - enable debbuild

References

[ 1 ] Bug #2161274 - CVE-2022-41717 golang: net/https: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests https://bugzilla.redhat.com/show_bug.cgi?id=2161274

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-c0149844e2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
Name : containernetworking-plugins
Product : Fedora 37
Version : 1.1.1
Release : 16.fc37
URL : https://github.com/containernetworking/plugins
Summary : Libraries for writing CNI plugin

News

Advisories

HOWTOs

Features

Interview with Guardian Digital CEO Dave Wreski: Open Source Utilization in Email Security Solutions & More
Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy