openSUSE Recommended Update: Recommended update for c-ares ______________________________________________________________________________ Announcement ID: openSUSE-RU-2021:1268-1 Rating: important References: #1190225 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for c-ares fixes the following issue: - Allow '_' as part of DNS response. (bsc#1190225) - 'c-ares' 1.17.2 introduced response validation to prevent a security issue, however it was not listing '_' as a valid character for domain name responses which caused issues when a 'CNAME' referenced a 'SRV' record which contained underscores. This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-1268=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): c-ares-debugsource-1.17.1+20200724-lp152.2.12.1 c-ares-devel-1.17.1+20200724-lp152.2.12.1 c-ares-utils-1.17.1+20200724-lp152.2.12.1 c-ares-utils-debuginfo-1.17.1+20200724-lp152.2.12.1 libcares2-1.17.1+20200724-lp152.2.12.1 libcares2-debuginfo-1.17.1+20200724-lp152.2.12.1 - openSUSE Leap 15.2 (x86_64): libcares2-32bit-1.17.1+20200724-lp152.2.12.1 libcares2-32bit-debuginfo-1.17.1+20200724-lp152.2.12.1 References: https://bugzilla.suse.com/1190225