Fedora 9 Update: cman-2.03.08-1.fc9
Summary
CMAN - The Cluster Manager
This update includes security fixes for: CVE-2008-4192 CVE-2008-4579
among many other upstream bug fixes.
* Tue Oct 21 2008 Fabio M. Di Nitto
- New upstream release
Fix rhbz#460376 CVE-2008-4192
Fix rhbz#467386 CVE-2008-4579
- cleanup/update patches to match 2.6.26 kernel in F-9
- add /var/log/cluster to the package
[ 1 ] Bug #460476 - CVE-2008-4192 cman/fence: insecure temporary file usage in the egenera fence agent
https://bugzilla.redhat.com/show_bug.cgi?id=460476
[ 2 ] Bug #467386 - CVE-2008-4579 cman/fence: insecure temporary file usage in the apc fence agents
https://bugzilla.redhat.com/show_bug.cgi?id=467386
su -c 'yum update cman' at the command line.
For more information, refer to "Managing Software with yum",
available at .
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce
FEDORA-2008-9042 2008-10-23 16:01:35 Product : Fedora 9 Version : 2.03.08 Release : 1.fc9 URL : Summary : CMAN - The Cluster Manager Description : CMAN - The Cluster Manager This update includes security fixes for: CVE-2008-4192 CVE-2008-4579 among many other upstream bug fixes. * Tue Oct 21 2008 Fabio M. Di Nitto - 2.03.08-1 - New upstream release Fix rhbz#460376 CVE-2008-4192 Fix rhbz#467386 CVE-2008-4579 - cleanup/update patches to match 2.6.26 kernel in F-9 - add /var/log/cluster to the package [ 1 ] Bug #460476 - CVE-2008-4192 cman/fence: insecure temporary file usage in the egenera fence agent https://bugzilla.redhat.com/show_bug.cgi?id=460476 [ 2 ] Bug #467386 - CVE-2008-4579 cman/fence: insecure temporary file usage in the apc fence agents https://bugzilla.redhat.com/show_bug.cgi?id=467386 su -c 'yum update cman' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
Change Log
References