Issued at: 2024-03-12
Updated at: 2024-03-12
Synopsis
Moderate: libmaxminddb security update
Description
The libmaxminddb package contains the MaxMind DB library.
Security Fix(es):
* libmaxminddb: improper initialization in dump_entry_data_list() in maxminddb.c (CVE-2020-28241)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected products
Rocky Linux 8 aarch64
Rocky Linux 8 x86_64
Fixes
1895379
CVEs
CVE-2020-28241
Affected packages
Rocky Linux 8 aarch64 - AppStream
libmaxminddb-0:1.2.0-10.el8_9.1.aarch64.rpm
libmaxminddb-0:1.2.0-10.el8_9.1.src.rpm
libmaxminddb-debuginfo-0:1.2.0-10.el8_9.1.aarch64.rpm
libmaxminddb-debugsource-0:1.2.0-10.el8_9.1.aarch64.rpm
libmaxminddb-devel-0:1.2.0-10.el8_9.1.aarch64.rpm
Rocky Linux 8 x86_64 - AppStream
libmaxminddb-0:1.2.0-10.el8_9.1.i686.rpm
libmaxminddb-0:1.2.0-10.el8_9.1.src.rpm
libmaxminddb-0:1.2.0-10.el8_9.1.x86_64.rpm
libmaxminddb-debuginfo-0:1.2.0-10.el8_9.1.i686.rpm
libmaxminddb-debuginfo-0:1.2.0-10.el8_9.1.x86_64.rpm
libmaxminddb-debugsource-0:1.2.0-10.el8_9.1.i686.rpm
libmaxminddb-debugsource-0:1.2.0-10.el8_9.1.x86_64.rpm
libmaxminddb-devel-0:1.2.0-10.el8_9.1.i686.rpm
libmaxminddb-devel-0:1.2.0-10.el8_9.1.x86_64.rpm