SECURITY: Fedora 33 Update: prosody-0.11.10-1.fc33
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-1d574ae400
2021-08-12 01:25:56.846999
--------------------------------------------------------------------------------
Name : prosody
Product : Fedora 33
Version : 0.11.10
Release : 1.fc33
URL : https://prosody.im/
Summary : Flexible communications server for Jabber/XMPP
Description :
Prosody is a flexible communications server for Jabber/XMPP written in Lua.
It aims to be easy to use, and light on resources. For developers it aims
to be easy to extend and give a flexible system on which to rapidly develop
added functionality, or prototype new protocols.
--------------------------------------------------------------------------------
Update Information:
Prosody 0.11.10 =============== Upstream is pleased to announce a new minor
release from their stable branch. This release primarily fixes CVE-2021-37601,
a remote information disclosure vulnerability. See the previously released
advisory for details. Upstream recommends that all deployments upgrade if they
have not yet applied the mitigation described in the advisory. Security
-------- * MUC: Fix logic for access to affiliation lists CVE-2021-37601:
https://prosody.im/security/advisory_20210722/ Minor changes ------------- *
prosodyctl: Add `limits` to known globals to warn about misplacing it *
util.ip: Fix netmask for link-local address range * mod_pep: Remove obsolete
node restoration code * util.pubsub: Fix traceback if node data not
initialized
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 3 2021 Robert Scheck 0.11.10-1
- Upgrade to 0.11.10 (#1989535)
* Fri Jul 23 2021 Fedora Release Engineering - 0.11.9-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Thu May 20 2021 Pete Walter - 0.11.9-3
- Rebuild for ICU 69
* Wed May 19 2021 Pete Walter - 0.11.9-2
- Rebuild for ICU 69
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1989535 - prosody-0.11.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1989535
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-1d574ae400' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
A prosody security update has been released for Fedora 33.