Fedora Linux Distribution
Find the information you need for your favorite open source distribution .
Fedora 25: php-horde-passwd Security Update
**passwd 5.0.7** * [jan] Officially support PHP 7. * [jan] SECURITY: Fix open redirects.
Fedora 25: php-horde-wicked Security Update
**wicked 2.0.8** * [jan] SECURITY: Fix unauthorized access to page attachments.
Fedora 25: php-horde-nag Security Update
**nag 4.2.17** * [jan] SECURITY: Fix unauthorized access to task exports. * [jan] Fix regression when exporting single tags to iCalendar CATEGORIES. * [jan] Officially support PHP 7.
Fedora 27: git Security Update 2017-655f0d38c3
These releases are about hardening `git shell` that is used on servers against an unsafe user input, which `git cvsserver` copes with poorly. From the release notes: * "git cvsserver" no longer is invoked by "git shell" by default, as it is old and largely unmaintained. * Various Perl scripts did not use safe_pipe_capture() instead of backticks, leaving them susceptible to
Fedora 27: chromium Security Update 2017-109f8db088
Update to 61.0.3163.100. Security fix for CVE-2017-5111, CVE-2017-5112, CVE-2017-5113, CVE-2017-5114, CVE-2017-5115, CVE-2017-5116, CVE-2017-5117, CVE-2017-5118, CVE-2017-5119, CVE-2017-5120, CVE-2017-5121, CVE-2017-5122
Fedora 27: poppler Security Update 2017-5d79b43fcc
- CVE-2017-14520 Floating point exception in Splash::scaleImageYuXd
Fedora 27: httpd Security Update 2017-fdd3a98e8f
This is a release fixing a security fix applied upstream, known as "optionsbleed" in popular parlance. It is relevant for hosted and co-located instances of Fedora (and why wouldn't you?).
Fedora 27: samba Security Update 2017-f0c18420e8
Security fix for CVE-2017-12150 CVE-2017-12151 CVE-2017-12163
Fedora 27: LibRaw Security Update
Fix for possible buffer overrun in kodak_65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data
Fedora 27: php-horde-passwd Security Update
**passwd 5.0.7** * [jan] Officially support PHP 7. * [jan] SECURITY: Fix open redirects.
Fedora 27: php-horde-wicked Security Update
**wicked 2.0.8** * [jan] SECURITY: Fix unauthorized access to page attachments.
Fedora 27: libmspack Security Update 2017-1af202a86b
Security fix for CVE-2017-6419 and CVE-2017-11423
Fedora 27: php-horde-Horde-Image Security Update
**Horde_Image 2.5.1** * [mjr] SECURITY: Fix more potential places for command injections.
Fedora 27: pkgconf Security Update
# Security fixes - fix crash in edge case where a .pc file has misquoting in a fragment list. # Other bug fixes: - fix logic edge case when comparing relocated paths
Fedora 27: emacs Security Update
Rebuilt against new ImageMagick ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security)
