UbuntuUpdates.org

Package "c-ares"

Name: c-ares

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • asynchronous name resolver - development files
  • asynchronous name resolver

Latest version: 1.16.1-1ubuntu0.1
Release: groovy (20.10)
Level: updates
Repository: main

Links



Other versions of "c-ares" in Groovy

Repository Area Version
base main 1.16.1-1
security main 1.16.1-1ubuntu0.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.16.1-1ubuntu0.1 2020-11-19 15:07:02 UTC

  c-ares (1.16.1-1ubuntu0.1) groovy-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2020-8277.patch: truncate to at most
      *naddrttls entries in ares_parse_a_reply.c, ares_parse_aaaa_reply.c.
    - CVE-2020-8277

 -- <email address hidden> (Leonidas S. Barbosa) Wed, 18 Nov 2020 13:13:32 -0300

CVE-2020-8277 A Node.js application that allows an attacker to trigger a DNS request ...



About   -   Send Feedback to @ubuntu_updates