Fedora 28: guacamole-server Security Update

    Date12 Mar 2019
    CategoryFedora
    243
    Posted ByLinuxSecurity Advisories
    Update to 1.0.0, which includes fixes for CVE-2018-1340
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2019-6c52489ec5
    2019-03-12 21:43:59.599226
    --------------------------------------------------------------------------------
    
    Name        : guacamole-server
    Product     : Fedora 28
    Version     : 1.0.0
    Release     : 1.fc28
    URL         : http://guac-dev.org/
    Summary     : Server-side native components that form the Guacamole proxy
    Description :
    Guacamole is an HTML5 remote desktop gateway.
    
    Guacamole provides access to desktop environments using remote desktop protocols
    like VNC and RDP. A centralized server acts as a tunnel and proxy, allowing
    access to multiple desktops through a web browser.
    
    No browser plugins are needed, and no client software needs to be installed. The
    client requires nothing more than a web browser supporting HTML5 and AJAX.
    
    The main web application is provided by the "guacamole-client" package.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    Update to 1.0.0, which includes fixes for CVE-2018-1340
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Sat Jan 26 2019 Simone Caronni  - 1.0.0-1
    - Update to version 1.0.0.
    * Fri Jul 13 2018 Fedora Release Engineering  - 0.9.14-2
    - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
    * Tue Jul  3 2018 Simone Caronni  - 0.9.14-1
    - Update to 0.9.14.
    - Update SPEC file.
    --------------------------------------------------------------------------------
    References:
    
      [ 1 ] Bug #1669122 - CVE-2018-1340 guacamole-server: guacamole: Secure flag missing from Apache Guacamole session cookie [epel-all]
            https://bugzilla.redhat.com/show_bug.cgi?id=1669122
      [ 2 ] Bug #1668502 - Please update Apache Guacamole to version 1.0
            https://bugzilla.redhat.com/show_bug.cgi?id=1668502
      [ 3 ] Bug #1669121 - CVE-2018-1340 guacamole-server: guacamole: Secure flag missing from Apache Guacamole session cookie [fedora-all]
            https://bugzilla.redhat.com/show_bug.cgi?id=1669121
    --------------------------------------------------------------------------------
    
    This update can be installed with the "dnf" update program. Use
    su -c 'dnf upgrade --advisory FEDORA-2019-6c52489ec5' at the command
    line. For more information, refer to the dnf documentation available at
    http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
    
    All packages are signed with the Fedora Project GPG key. More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it.
    To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it.
    Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
    List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
    List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it.
    
    You are not authorised to post comments.

    LinuxSecurity Poll

    Which Linux distribution(s) do you use?

    Message!

    Poll results are hidden from public viewing.

    You are not authorized to vote on this poll.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 5 answer(s).
    /component/communitypolls/?task=poll.vote
    7
    radio
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.