Fedora 26: xdg-utils Security Update 2018-c8f559e8c2
Summary
The xdg-utils package is a set of simple scripts that provide basic
desktop integration functions for any Free Desktop, such as Linux.
They are intended to provide a set of defacto standards.
This means that:
* Third party software developers can rely on these xdg-utils
for all of their simple integration needs.
* Developers of desktop environments can make sure that their
environments are well supported
* Distribution vendors can provide custom versions of these utilities
The following scripts are provided at this time:
* xdg-desktop-icon Install icons to the desktop
* xdg-desktop-menu Install desktop menu items
* xdg-email Send mail using the user's preferred e-mail composer
* xdg-icon-resource Install icon resources
* xdg-mime Query information about file type handling and
install descriptions for new file types
* xdg-open Open a file or URL in the user's preferred application
* xdg-screensaver Control the screensaver
* xdg-settings Get various settings from the desktop environment
New upstream bugfix release, includes security fix for CVE-2017-18266
* Thu May 10 2018 Rex Dieter
- xdg-utils-1.1.3
* Tue Feb 27 2018 Rex Dieter
- pull in upstream fixes
* Fri Feb 9 2018 Fedora Release Engineering
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Jul 27 2017 Fedora Release Engineering
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
* Mon May 8 2017 Rex Dieter
- xdg-utils-1.1.2
[ 1 ] Bug #1578767 - CVE-2017-18266 xdg-utils: Argument injection vulnerability in open_envvar() function
https://bugzilla.redhat.com/show_bug.cgi?id=1578767
su -c 'dnf upgrade --advisory FEDORA-2018-c8f559e8c2' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQOYWNXX45ZNZUHVADSS36C37Z36J7I/
FEDORA-2018-c8f559e8c2 2018-05-25 14:56:52.636952 Product : Fedora 26 Version : 1.1.3 Release : 1.fc26 URL : https://portland.freedesktop.org/ Summary : Basic desktop integration functions Description : The xdg-utils package is a set of simple scripts that provide basic desktop integration functions for any Free Desktop, such as Linux. They are intended to provide a set of defacto standards. This means that: * Third party software developers can rely on these xdg-utils for all of their simple integration needs. * Developers of desktop environments can make sure that their environments are well supported * Distribution vendors can provide custom versions of these utilities The following scripts are provided at this time: * xdg-desktop-icon Install icons to the desktop * xdg-desktop-menu Install desktop menu items * xdg-email Send mail using the user's preferred e-mail composer * xdg-icon-resource Install icon resources * xdg-mime Query information about file type handling and install descriptions for new file types * xdg-open Open a file or URL in the user's preferred application * xdg-screensaver Control the screensaver * xdg-settings Get various settings from the desktop environment New upstream bugfix release, includes security fix for CVE-2017-18266 * Thu May 10 2018 Rex Dieter - 1.1.3-1 - xdg-utils-1.1.3 * Tue Feb 27 2018 Rex Dieter - 1.1.2-4 - pull in upstream fixes * Fri Feb 9 2018 Fedora Release Engineering - 1.1.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Jul 27 2017 Fedora Release Engineering - 1.1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Mon May 8 2017 Rex Dieter - 1.1.2-1 - xdg-utils-1.1.2 [ 1 ] Bug #1578767 - CVE-2017-18266 xdg-utils: Argument injection vulnerability in open_envvar() function https://bugzilla.redhat.com/show_bug.cgi?id=1578767 su -c 'dnf upgrade --advisory FEDORA-2018-c8f559e8c2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQOYWNXX45ZNZUHVADSS36C37Z36J7I/
Change Log
References