Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -3 articles for you...
100
security advisorymoderateDoSSUSE: 2025:20067-1 moderate: addressing DoS vulnerability in libdb-4_8
* bsc#1174414 Cross-References: * CVE-2019-2708 . # Security update for libdb-4_8 Announcement ID: SUSE-SU-2025:20067-1 Release Date: 2025-02-03T09:01:27Z Rating: moderate References: * bsc#1174414 Cross-References: * CVE-2019-2708 CVSS scores: * CVE-2019-2708 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2019-2708 ( NVD ): 3.3 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for libdb-4_8 fixes the following issues: CVE-2019-2708: Fixed data store execution leading to partial DoS (bsc#1174414) Changes: * libdb: Data store execution leads to partial DoS * Backport the upsteam commits: * Fixed several possible crashes when running db_verify on a corrupted database. [#27864] * Fixed several possible hangs when running db_verify on a corrupted database. [#27864] * Added a warning message when attempting to verify a queue database which has many extent files. Verification will take a long time if there are many extent files. [#27864] ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-118=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * libdb-4_8-4.8.30-7.1 * libdb-4_8-debugsource-4.8.30-7.1 * libdb-4_8-debuginfo-4.8.30-7.1 ## References: * https://www.suse.com/security/cve/CVE-2019-2708.html * https://bugzilla.suse.com/show_bug.cgi?id=1174414 . SUSE Linux Micro 6.0 has a security enhancement to mitigate a moderate DoS vulnerability in libdb-4_8, identified as CVE-2019-2708.. libdb update, SUSE security, DoS fix, security patch, system integrity. . LinuxSecurity.com Team
Jun 04, 2025
SuSE
100
security advisorysecurity patchsuseImportant Security Update Notification for Red Hat/Capture API: 2023:3887-2
The container suse/389-ds was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/389-ds ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:2478-1 Container Tags : suse/389-ds:2.2 , suse/389-ds:2.2-14.28 , suse/389-ds:latest Container Release : 14.28 Severity : moderate Type : security References : 1099695 1213487 CVE-2023-3446 ----------------------------------------------------------------- The container suse/389-ds was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2965-1 Released: Tue Jul 25 12:30:22 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1213487,CVE-2023-3446 This update for openssl-1_1 fixes the following issues: - CVE-2023-3446: Fixed DH_check() excessive time with over sized modulus (bsc#1213487). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2966-1 Released: Tue Jul 25 14:26:14 2023 Summary: Recommended update for libxml2 Type: recommended Severity: moderate References: This update for libxml2 fixes the following issues: - Build also for modern python version (jsc#PED-68) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2998-1 Released: Thu Jul 27 08:39:49 2023 Summary: Recommended update for libdb-4_8 Type: recommended Severity: moderate References: 1099695 This update for libdb-4_8 fixes the following issues: - Fix incomplete license tag (bsc#1099695) The following package changes have been done: - libxml2-2-2.10.3-150500.5.5.1 updated - libopenssl1_1-1.1.1l-150500.17.9.1 updated - libopenssl1_1-hmac-1.1.1l-150500.17.9.1 updated - openssl-1_1-1.1.1l-150500.17.9.1 updated - libdb-4_8-4.8.30-150000.7.9.1 updated -db48-utils-4.8.30-150000.7.9.1 updated - container:sles15-image-15.0.0-36.5.20 updated . Significant security enhancement for the suse/389-ds container targeting urgent vulnerabilities. Updates incorporated to improve defense.. suse/389-ds security, container update, security patches, SUSE advisory 2023, moderate severity fix. . LinuxSecurity.com Team
Aug 01, 2023
SuSE
219
security advisorysoftware updatebug fixRocky Linux 8 RLBA-2021:3594 Unknown: libdb Bug Fix And Enhancement
libdb bug fix and enhancement update. \{'type': 'BugFix', 'shortCode': 'RL', 'name': 'RLBA-2021:3594', 'synopsis': 'libdb bug fix and enhancement update', 'severity': 'UnknownSeverity', 'topic': 'An update for libdb is now available for Rocky Linux 8.', 'description': 'The libdb packages provide the Berkeley Database, an embedded database\nsupporting both traditional and client/server applications.\n(BZ#2001972)', 'solution': None, 'affectedProducts': ['Rocky Linux 8'], 'fixes': [], 'cves': ['Red Hat:::https://access.redhat.com/errata/RHBA-2021:3594:::RHBA-2021:3594'], 'references': [], 'publishedAt': '2021-10-01T20:16:47.226440Z', 'rpms': ['libdb-5.3.28-42.el8_4.aarch64.rpm', 'libdb-5.3.28-42.el8_4.i686.rpm', 'libdb-5.3.28-42.el8_4.src.rpm', 'libdb-5.3.28-42.el8_4.x86_64.rpm', 'libdb-cxx-5.3.28-42.el8_4.aarch64.rpm', 'libdb-cxx-5.3.28-42.el8_4.i686.rpm', 'libdb-cxx-5.3.28-42.el8_4.x86_64.rpm', 'libdb-cxx-debuginfo-5.3.28-42.el8_4.aarch64.rpm', 'libdb-cxx-debuginfo-5.3.28-42.el8_4.i686.rpm', 'libdb-cxx-debuginfo-5.3.28-42.el8_4.x86_64.rpm', 'libdb-cxx-devel-5.3.28-42.el8_4.aarch64.rpm', 'libdb-cxx-devel-5.3.28-42.el8_4.i686.rpm', 'libdb-cxx-devel-5.3.28-42.el8_4.x86_64.rpm', 'libdb-debuginfo-5.3.28-42.el8_4.aarch64.rpm', 'libdb-debuginfo-5.3.28-42.el8_4.i686.rpm', 'libdb-debuginfo-5.3.28-42.el8_4.x86_64.rpm', 'libdb-debugsource-5.3.28-42.el8_4.aarch64.rpm', 'libdb-debugsource-5.3.28-42.el8_4.i686.rpm', 'libdb-debugsource-5.3.28-42.el8_4.x86_64.rpm', 'libdb-devel-5.3.28-42.el8_4.aarch64.rpm', 'libdb-devel-5.3.28-42.el8_4.i686.rpm', 'libdb-devel-5.3.28-42.el8_4.x86_64.rpm', 'libdb-devel-doc-5.3.28-42.el8_4.noarch.rpm', 'libdb-sql-5.3.28-42.el8_4.aarch64.rpm', 'libdb-sql-5.3.28-42.el8_4.i686.rpm', 'libdb-sql-5.3.28-42.el8_4.x86_64.rpm', 'libdb-sql-debuginfo-5.3.28-42.el8_4.aarch64.rpm', 'libdb-sql-debuginfo-5.3.28-42.el8_4.i686.rpm', 'libdb-sql-debuginfo-5.3.28-42.el8_4.x86_64.rpm', 'libdb-sql-devel-5.3.28-42.el8_4.aarch64.rpm', 'libdb-sql-devel-5.3.28-42.el8_4.i686.rpm','libdb-sql-devel-5.3.28-42.el8_4.x86_64.rpm', 'libdb-sql-devel-debuginfo-5.3.28-42.el8_4.aarch64.rpm', 'libdb-sql-devel-debuginfo-5.3.28-42.el8_4.i686.rpm', 'libdb-sql-devel-debuginfo-5.3.28-42.el8_4.x86_64.rpm', 'libdb-utils-5.3.28-42.el8_4.aarch64.rpm', 'libdb-utils-5.3.28-42.el8_4.x86_64.rpm', 'libdb-utils-debuginfo-5.3.28-42.el8_4.aarch64.rpm', 'libdb-utils-debuginfo-5.3.28-42.el8_4.x86_64.rpm']}\. A new version of libdb has been released for Rocky Linux 8, featuring several bug corrections and improvements.. libdb Update, Rocky Linux Enhancement, Bug Fix Release. . LinuxSecurity.com Team
Sep 02, 2022
Rocky Linux
98
security advisoryRed Hatlow severityRed Hat 8 RHSA-2021:1675-01 Low: Libdb DoS Security Fix
An update for libdb is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: libdb security update Advisory ID: RHSA-2021:1675-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:1675 Issue date: 2021-05-18 CVE Names: CVE-2019-2708 ==================================================================== 1. Summary: An update for libdb is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The libdb packages provide the Berkeley Database, an embedded database supporting both traditional and client/server applications. Security Fix(es): * libdb: Denial of service in the Data Store component (CVE-2019-2708) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section. 4. Solution: For details on how to apply this update,which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1853242 - CVE-2019-2708 libdb: Denial of service in the Data Store component 6. Package List: Red Hat Enterprise Linux AppStream (v.8): aarch64: libdb-cxx-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-debugsource-5.3.28-40.el8.aarch64.rpm libdb-devel-5.3.28-40.el8.aarch64.rpm libdb-java-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-sql-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-tcl-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-utils-debuginfo-5.3.28-40.el8.aarch64.rpm ppc64le: libdb-cxx-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-debugsource-5.3.28-40.el8.ppc64le.rpm libdb-devel-5.3.28-40.el8.ppc64le.rpm libdb-java-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-sql-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-tcl-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-utils-debuginfo-5.3.28-40.el8.ppc64le.rpm s390x: libdb-cxx-debuginfo-5.3.28-40.el8.s390x.rpm libdb-debuginfo-5.3.28-40.el8.s390x.rpm libdb-debugsource-5.3.28-40.el8.s390x.rpm libdb-devel-5.3.28-40.el8.s390x.rpm libdb-java-debuginfo-5.3.28-40.el8.s390x.rpm libdb-sql-debuginfo-5.3.28-40.el8.s390x.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.s390x.rpm libdb-tcl-debuginfo-5.3.28-40.el8.s390x.rpm libdb-utils-debuginfo-5.3.28-40.el8.s390x.rpm x86_64: libdb-cxx-debuginfo-5.3.28-40.el8.i686.rpm libdb-cxx-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-debuginfo-5.3.28-40.el8.i686.rpm libdb-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-debugsource-5.3.28-40.el8.i686.rpm libdb-debugsource-5.3.28-40.el8.x86_64.rpm libdb-devel-5.3.28-40.el8.i686.rpm libdb-devel-5.3.28-40.el8.x86_64.rpm libdb-java-debuginfo-5.3.28-40.el8.i686.rpm libdb-java-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-sql-debuginfo-5.3.28-40.el8.i686.rpm libdb-sql-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.i686.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-tcl-debuginfo-5.3.28-40.el8.i686.rpm libdb-tcl-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-utils-debuginfo-5.3.28-40.el8.i686.rpm libdb-utils-debuginfo-5.3.28-40.el8.x86_64.rpm Red HatEnterprise Linux BaseOS (v.8): Source: libdb-5.3.28-40.el8.src.rpm aarch64: libdb-5.3.28-40.el8.aarch64.rpm libdb-cxx-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-debugsource-5.3.28-40.el8.aarch64.rpm libdb-java-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-sql-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-tcl-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-utils-5.3.28-40.el8.aarch64.rpm libdb-utils-debuginfo-5.3.28-40.el8.aarch64.rpm ppc64le: libdb-5.3.28-40.el8.ppc64le.rpm libdb-cxx-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-debugsource-5.3.28-40.el8.ppc64le.rpm libdb-java-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-sql-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-tcl-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-utils-5.3.28-40.el8.ppc64le.rpm libdb-utils-debuginfo-5.3.28-40.el8.ppc64le.rpm s390x: libdb-5.3.28-40.el8.s390x.rpm libdb-cxx-debuginfo-5.3.28-40.el8.s390x.rpm libdb-debuginfo-5.3.28-40.el8.s390x.rpm libdb-debugsource-5.3.28-40.el8.s390x.rpm libdb-java-debuginfo-5.3.28-40.el8.s390x.rpm libdb-sql-debuginfo-5.3.28-40.el8.s390x.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.s390x.rpm libdb-tcl-debuginfo-5.3.28-40.el8.s390x.rpm libdb-utils-5.3.28-40.el8.s390x.rpm libdb-utils-debuginfo-5.3.28-40.el8.s390x.rpm x86_64: libdb-5.3.28-40.el8.i686.rpm libdb-5.3.28-40.el8.x86_64.rpm libdb-cxx-debuginfo-5.3.28-40.el8.i686.rpm libdb-cxx-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-debuginfo-5.3.28-40.el8.i686.rpm libdb-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-debugsource-5.3.28-40.el8.i686.rpm libdb-debugsource-5.3.28-40.el8.x86_64.rpm libdb-java-debuginfo-5.3.28-40.el8.i686.rpm libdb-java-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-sql-debuginfo-5.3.28-40.el8.i686.rpm libdb-sql-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.i686.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-tcl-debuginfo-5.3.28-40.el8.i686.rpm libdb-tcl-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-utils-5.3.28-40.el8.x86_64.rpm libdb-utils-debuginfo-5.3.28-40.el8.i686.rpm libdb-utils-debuginfo-5.3.28-40.el8.x86_64.rpm Red Hat CodeReady Linux Builder (v.8): aarch64: libdb-cxx-5.3.28-40.el8.aarch64.rpm libdb-cxx-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-cxx-devel-5.3.28-40.el8.aarch64.rpm libdb-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-debugsource-5.3.28-40.el8.aarch64.rpm libdb-java-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-sql-5.3.28-40.el8.aarch64.rpm libdb-sql-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-sql-devel-5.3.28-40.el8.aarch64.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-tcl-debuginfo-5.3.28-40.el8.aarch64.rpm libdb-utils-debuginfo-5.3.28-40.el8.aarch64.rpm noarch: libdb-devel-doc-5.3.28-40.el8.noarch.rpm ppc64le: libdb-cxx-5.3.28-40.el8.ppc64le.rpm libdb-cxx-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-cxx-devel-5.3.28-40.el8.ppc64le.rpm libdb-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-debugsource-5.3.28-40.el8.ppc64le.rpm libdb-java-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-sql-5.3.28-40.el8.ppc64le.rpm libdb-sql-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-sql-devel-5.3.28-40.el8.ppc64le.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-tcl-debuginfo-5.3.28-40.el8.ppc64le.rpm libdb-utils-debuginfo-5.3.28-40.el8.ppc64le.rpm s390x: libdb-cxx-5.3.28-40.el8.s390x.rpm libdb-cxx-debuginfo-5.3.28-40.el8.s390x.rpm libdb-cxx-devel-5.3.28-40.el8.s390x.rpm libdb-debuginfo-5.3.28-40.el8.s390x.rpm libdb-debugsource-5.3.28-40.el8.s390x.rpm libdb-java-debuginfo-5.3.28-40.el8.s390x.rpm libdb-sql-5.3.28-40.el8.s390x.rpm libdb-sql-debuginfo-5.3.28-40.el8.s390x.rpm libdb-sql-devel-5.3.28-40.el8.s390x.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.s390x.rpm libdb-tcl-debuginfo-5.3.28-40.el8.s390x.rpm libdb-utils-debuginfo-5.3.28-40.el8.s390x.rpm x86_64: libdb-cxx-5.3.28-40.el8.i686.rpm libdb-cxx-5.3.28-40.el8.x86_64.rpm libdb-cxx-debuginfo-5.3.28-40.el8.i686.rpm libdb-cxx-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-cxx-devel-5.3.28-40.el8.i686.rpm libdb-cxx-devel-5.3.28-40.el8.x86_64.rpm libdb-debuginfo-5.3.28-40.el8.i686.rpm libdb-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-debugsource-5.3.28-40.el8.i686.rpm libdb-debugsource-5.3.28-40.el8.x86_64.rpm libdb-java-debuginfo-5.3.28-40.el8.i686.rpm libdb-java-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-sql-5.3.28-40.el8.i686.rpm libdb-sql-5.3.28-40.el8.x86_64.rpm libdb-sql-debuginfo-5.3.28-40.el8.i686.rpm libdb-sql-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-sql-devel-5.3.28-40.el8.i686.rpm libdb-sql-devel-5.3.28-40.el8.x86_64.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.i686.rpm libdb-sql-devel-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-tcl-debuginfo-5.3.28-40.el8.i686.rpm libdb-tcl-debuginfo-5.3.28-40.el8.x86_64.rpm libdb-utils-debuginfo-5.3.28-40.el8.i686.rpm libdb-utils-debuginfo-5.3.28-40.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-2708 https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYKPwxtzjgjWX9erEAQhVsQ/9G2F5zntz7wKAvmcVydlzRN7e1ezd7Ac6 sSSDvBhUzUJXibjPgFOSc21T/+zxLhgH/VJ09bnQeod6/Db/pFaeROS/K43yZLwE ZjRU0faMgWNphHceArX71tgYQv6ch1dVFbr0snJGu7bBKsanlkp/fzZ9u3lQ1rHC GJndXsf3DIQ6z6kYUVzAG+dXz8F+ff/eamTzX+kQrw7/yVQsoUk9KDMcMhoxC6UR X9Ug0H6FLk4iwdMEvOcQy9u3w5jS7paCKg45YwiceQYDuZ+WN/ElG0rpgiJ3hDvk jD9Pk8jdSM0rkE+8QMrIXCdvyqmfV/tUUGy9vPMbcuwbP4NaHMESUlIMLRnWWMe3 xFWS1kXYvX8rojEv8/K5cW3GT4UmFPKYFYEKZcmSrfVKiEKt3OC/weYYvns2tbeV /OCAus85np2rj85712ewuAPJ8PHBj/mZ5ms2JSBpV6Ps6uIZsHCPkdRNZTA0aRNU 6Rr3aGfEa5bITWRel74n2aqNSeBwScGYf4X+PdJGM0ZTsm0TXSVK/E5RF14CJ1NC vIGCJdaW0Svdhnyy+/WQC10djS25bf9iYqHzLeuYMj1PE0XJPM4NmJxhKlDpWPcz /gCSED1Ej3fJaOwkuuo4JlbA4af2yvcaUuiSTafK7DBnVyazB4OrU1GuAfpnMkw4 O7vbJB+pnEE=Ydc9 -----END PGP SIGNATURE----- -- RHSA-announce mailinglist
May 18, 2021
•Low
Red Hat
89
security advisoryFedorainstallation issueFedora 25: libdb Security Advisory - Critical DB_CONFIG Parsing Fix
Security fix for DB_CONFIG parsing when db_home is not set. This update also introduces modified fixes for rhbz#1394862 once again and additionally fixes ppc specific hangs described in rhbz#1460003. Please be aware that this update is expected to cause **DB_VERSION_MISMATCH** errors during installation if you are still running an older release of libdb. These errors are a result of packages. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-372bb1edb3 2017-07-11 18:56:33.218594 --------------------------------------------------------------------------------Name : libdb Product : Fedora 25 Version : 5.3.28 Release : 24.fc25 URL : https://www.oracle.com/database/ Summary : The Berkeley DB database library for C Description : The Berkeley Database (Berkeley DB) is a programmatic toolkit that provides embedded database support for both traditional and client/server applications. The Berkeley DB includes B+tree, Extended Linear Hashing, Fixed and Variable-length record access methods, transactions, locking, logging, shared memory caching, and database recovery. The Berkeley DB supports C, C++, Java, and Perl APIs. It is used by many applications, including Python and Perl, so this should be installed on all systems. --------------------------------------------------------------------------------Update Information: Security fix for DB_CONFIG parsing when db_home is not set. This update also introduces modified fixes for rhbz#1394862 once again and additionally fixes ppc specific hangs described in rhbz#1460003. Please be aware that this update is expected to cause **DB_VERSION_MISMATCH** errors during installation if you are still running an older release of libdb. These errors are a result of packages calling rpm commands during installation and have so far been found harmless. You can also run into issues with dnf plugins that do the same. As these plugins are run after the rpmtransaction has already gone through successfully they should also be harmless. However, in this case a rebuild of rpmdb's environment will be needed. Detailed information on how to achieve this can be found in the links below. For more information please take a look at: https://fedoraproject.org/wiki/Common_F26_bugs#upgrade-libdb https://fedoraproject.org/wiki/Common_F26_bugs#libdb-rebuilddb --------------------------------------------------------------------------------References: [ 1 ] Bug #1464032 - libdb: Reads DB_CONFIG from the current working directory https://bugzilla.redhat.com/show_bug.cgi?id=1464032 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libdb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Jul 12, 2017
•Critical
Fedora
89
security advisoryfedoracriticalFedora 24: 2017-014d67fa9d Critical Libdb Security Update for DB_CONFIG
Security fix for DB_CONFIG parsing when db_home is not set. This update also introduces modified fixes for rhbz#1394862 once again and additionally fixes ppc specific hangs described in rhbz#1460003. Please be aware that this update is expected to cause **DB_VERSION_MISMATCH** errors during installation if you are still running an older release of libdb. These errors are a result of packages. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2017-014d67fa9d 2017-07-11 18:56:33.191646 --------------------------------------------------------------------------------Name : libdb Product : Fedora 24 Version : 5.3.28 Release : 24.fc24 URL : https://www.oracle.com/database/ Summary : The Berkeley DB database library for C Description : The Berkeley Database (Berkeley DB) is a programmatic toolkit that provides embedded database support for both traditional and client/server applications. The Berkeley DB includes B+tree, Extended Linear Hashing, Fixed and Variable-length record access methods, transactions, locking, logging, shared memory caching, and database recovery. The Berkeley DB supports C, C++, Java, and Perl APIs. It is used by many applications, including Python and Perl, so this should be installed on all systems. --------------------------------------------------------------------------------Update Information: Security fix for DB_CONFIG parsing when db_home is not set. This update also introduces modified fixes for rhbz#1394862 once again and additionally fixes ppc specific hangs described in rhbz#1460003. Please be aware that this update is expected to cause **DB_VERSION_MISMATCH** errors during installation if you are still running an older release of libdb. These errors are a result of packages calling rpm commands during installation and have so far been found harmless. You can also run into issues with dnf plugins that do the same. As these plugins are run after the rpmtransaction has already gone through successfully they should also be harmless. However, in this case a rebuild of rpmdb's environment will be needed. Detailed information on how to achieve this can be found in the links below. For more information please take a look at: https://fedoraproject.org/wiki/Common_F26_bugs#upgrade-libdb https://fedoraproject.org/wiki/Common_F26_bugs#libdb-rebuilddb --------------------------------------------------------------------------------References: [ 1 ] Bug #1464032 - libdb: Reads DB_CONFIG from the current working directory https://bugzilla.redhat.com/show_bug.cgi?id=1464032 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade libdb' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Jul 12, 2017
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!