Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Fedora: 2020-08-31 moderate: eclipse-ecf security update

fedora
Calendar Grey August 31, 2020
Dist Fedora Esm H88
The update to Fedora's Eclipse ECF brings critical improvements and resolves issues, fortifying security measures for its users.
Updates to the latest upstream release of Eclipse

Summary

ECF is a set of frameworks for building communications into applications and

services. It provides a lightweight, modular, transport-independent, fully

compliant implementation of the OSGi Remote Services standard.

Updates to the latest upstream release of Eclipse. See the upstream release

notes for details: https://eclipseide.org/release/noteworthy/ Also

contains security fixes for CVE-2019-17566 and CVE-2019-17638.

* Mon Aug 10 2020 Mat Booth - 3.14.8-4

- Allow building on JDK 11

* Sat Aug 1 2020 Fedora Release Engineering - 3.14.8-3

- Second attempt - Rebuilt for

https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

* Mon Jul 27 2020 Fedora Release Engineering - 3.14.8-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

* Thu Jun 18 2020 Mat Booth - 3.14.8-1

- Update to latest upstream release

- License switch to EPL 2

* Fri Mar 20 2020 Mat Booth - 3.14.7-1

- Update to latest upstream release

[ 1 ] Bug #1848617 - CVE-2019-17566 batik: SSRF via "xlink:href"

https://bugzilla.redhat.com/show_bug.cgi?id=1848617

[ 2 ] Bug #1864680 - CVE-2019-17638 jetty: double release of resource can lead to information disclosure

https://bugzilla.redhat.com/show_bug.cgi?id=1864680

su -c 'dnf upgrade --advisory FEDORA-2020-cf8ef2f333' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory Fedora security fix information disclosure Eclipse communication framework upstream release

Change Log

References

Update Instructions

Product: Fedora 32
Version: 3.14.8
Release: 4.fc32
URL: https://github.com/eclipse-ecf/ecf/
Summary: Eclipse Communication Framework (ECF) Eclipse plug-in

Topics%20covered

Topics Covered

security advisory Fedora security fix information disclosure Eclipse communication framework upstream release

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here