Stay Secure with the Latest Linux Advisories

security advisorydenial of servicefedora

Fedora 34: FEDORA-2022-5cbd6de569 Moderate: Cloud SQL Proxy DoS

Rebuild for CVE-2022-27191. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-5cbd6de569 2022-04-28 05:53:41.577333 --------------------------------------------------------------------------------Name : golang-github-googlecloudplatform-cloudsql-proxy Product : Fedora 34 Version : 1.19.1 Release : 5.fc34 URL : https://github.com/GoogleCloudPlatform/cloud-sql-proxy Summary : Cloud SQL proxy client and Go library Description : The Cloud SQL Proxy allows a user with the appropriate permissions to connect to a Second Generation Cloud SQL database without having to deal with IP whitelisting or SSL certificates manually. It works by opening unix/tcp sockets on the local machine and proxying connections to the associated Cloud SQL instances when the sockets are used. --------------------------------------------------------------------------------Update Information: Rebuild for CVE-2022-27191 --------------------------------------------------------------------------------ChangeLog: * Sat Apr 16 2022 Fabio Alessandro Locati - 1.19.1-5 - Rebuilt for CVE-2022-27191 * Thu Jan 20 2022 Fedora Release Engineering - 1.19.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Thu Jul 22 2021 Fedora Release Engineering - 1.19.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2074262 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5cbd6de569' at the command line. For more information, refer to the dnf documentation availableat https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . The golang-github-googlecloudplatform-cloudsql-proxy package in Fedora 34 has been updated to address CVE-2022-27191, improving security for Cloud SQL Proxy users.. Fedora Security Update, Cloud SQL Proxy, CVE-2022-27191, DNF Upgrade. . LinuxSecurity.com Team

Apr 28, 2022 Fedora