Fedora Linux 8811 Published by

A galera security update has been released for Fedora 32.



SECURITY: Fedora 32 Update: galera-26.4.4-2.fc32


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-35f52d9370
2020-06-16 01:25:41.304833
--------------------------------------------------------------------------------

Name : galera
Product : Fedora 32
Version : 26.4.4
Release : 2.fc32
URL :   http://galeracluster.com/
Summary : Synchronous multi-master wsrep provider (replication engine)
Description :
Galera is a fast synchronous multi-master wsrep provider (replication engine)
for transactional databases and similar applications. For more information
about wsrep API see   http://launchpad.net/wsrep. For a description of Galera
replication engine see   http://www.codership.com.

--------------------------------------------------------------------------------
Update Information:

**MariaDB 10.4.13 , Galera 26.4.4 , MariaDB CONC/C 3.1.8** Release notes:
  https://mariadb.com/kb/en/mariadb-10413-release-notes/
  https://mariadb.com/kb/en/mariadb-connector-c-318-release-notes/
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 8 2020 Michal Schorm - 26.4.4-2
- Second rebuild for Boost 1.73
* Fri Jun 5 2020 Michal Schorm - 26.4.4-1
- Rebase to 26.4.4
Resolves: rhbz#1546787
* Thu May 28 2020 Jonathan Wakely - 26.4.3-4
- Rebuilt for Boost 1.73
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1546787 - FTBFS: -Wp,-D_GLIBCXX_ASSERTIONS
  https://bugzilla.redhat.com/show_bug.cgi?id=1546787
[ 2 ] Bug #1830118 - CVE-2020-2752 CVE-2020-2760 CVE-2020-2812 CVE-2020-2814 mariadb: various flaws [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=1830118
[ 3 ] Bug #1839828 - CVE-2020-13249 mariadb-connector-c: Improper validation of content in a OK packet received from a client [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=1839828
[ 4 ] Bug #1840649 - CVE-2020-2752 mariadb-connector-c: mysql: C API unspecified vulnerability (CPU Apr 2020) [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=1840649
[ 5 ] Bug #1843795 - CVE-2020-13249 mariadb: mariadb-connector-c: Improper validation of content in a OK packet received from server [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=1843795
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-35f52d9370' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys