couchdb-rpm icon indicating copy to clipboard operation
couchdb-rpm copied to clipboard

Published 20 hours ago verified publisher icon wendall911

1.7.1 fixes critical CVEs

Open wohali opened this issue 7 years ago • 2 comments

Hi Wendall,

Thanks again for all your work in maintaining the RPMs for CouchDB 1.x.

We had 2 critical CVEs hit recently. These have been fixed in CouchDB 1.7.1 (perhaps our last 1.x release!) and Peter Lemenkov then fixed the Fedora 26/27/28 RPMs:

https://bugzilla.redhat.com/show_bug.cgi?id=1516981

Is there any chance of updating your repo to function against 1.7.1 as well?

wohali avatar Nov 27 '17 19:11 wohali

@wohali as a stopgap solution https://github.com/kika/couchdb17-centos7 I've rebuilt the RPMs from Fedora 28 and the rest could be taken from Erlang-Solutions repository.

kika avatar Mar 04 '18 12:03 kika

@wohali Thanks

/cc @janl RPMs for Centos 7, 1.7.1, see https://github.com/kika/couchdb17-centos7/releases

wohali avatar Mar 04 '18 18:03 wohali