Fedora 9 Glib2 Critical Update: 2009-2688 Integer Overflow Issue

GLib is the low-level core library that forms the basis

for projects such as GTK+ and GNOME. It provides data structure

handling for C, portability wrappers, and interfaces for such runtime

functionality as an event loop, threads, dynamic loading, and an

object system.

This package provides version 2 of GLib.

This update fixes possible integer overflows in the base64 handling functions.

This has been reported in CVE-2008-4316.

* Thu Mar 12 2009 Matthias Clasen - 2.16.6-3

- Fix integer overflows in the base64 handling functions. CVE-2008-4316

* Mon Oct 27 2008 Matthias Clasen - 2.16.6-2

- Use asm implementation for atomic ops on x86

* Fri Sep 12 2008 Matthias Clasen - 2.16.6-1

- Update to 2.16.6

* Sat Jul 19 2008 Matthias Clasen - 2.16.5-1

- Update to 2.16.5

* Tue Jul 1 2008 Matthias Clasen - 2.16.4-1

- Update to 2.16.4

* Mon Jun 16 2008 Matthias Clasen - 2.16.3-7

- Fix a directory ownership oversight (#449885)

* Mon Jun 16 2008 Matthias Clasen - 2.16.3-6

- Fix a race in class initialization that causes assertion

failures and crashes

[ 1 ] Bug #474770 - CVE-2008-4316 glib2: integer overflows in the base64 handling functions (oCERT-2008-015)

https://bugzilla.redhat.com/show_bug.cgi?id=474770

su -c 'yum update glib2' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/