Fedora Linux Distribution - Page 378.1
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
These releases are about hardening `git shell` that is used on servers against an unsafe user input, which `git cvsserver` copes with poorly. From the release notes: * "git cvsserver" no longer is invoked by "git shell" by default, as it is old and largely unmaintained. * Various Perl scripts did not use safe_pipe_capture() instead of backticks, leaving them susceptible to
Update to 61.0.3163.100. Security fix for CVE-2017-5111, CVE-2017-5112, CVE-2017-5113, CVE-2017-5114, CVE-2017-5115, CVE-2017-5116, CVE-2017-5117, CVE-2017-5118, CVE-2017-5119, CVE-2017-5120, CVE-2017-5121, CVE-2017-5122
- CVE-2017-14520 Floating point exception in Splash::scaleImageYuXd
This is a release fixing a security fix applied upstream, known as "optionsbleed" in popular parlance. It is relevant for hosted and co-located instances of Fedora (and why wouldn't you?).
Security fix for CVE-2017-12150 CVE-2017-12151 CVE-2017-12163
Fix for possible buffer overrun in kodak_65000 decoder Fix for possible heap overrun in Canon makernotes parser Fix for CVE-2017-13735 CVE-2017-14265: Additional check for X-Trans CFA pattern data
**passwd 5.0.7** * [jan] Officially support PHP 7. * [jan] SECURITY: Fix open redirects.
**wicked 2.0.8** * [jan] SECURITY: Fix unauthorized access to page attachments.
Security fix for CVE-2017-6419 and CVE-2017-11423
**Horde_Image 2.5.1** * [mjr] SECURITY: Fix more potential places for command injections.
# Security fixes - fix crash in edge case where a .pc file has misquoting in a fragment list. # Other bug fixes: - fix logic edge case when comparing relocated paths
Rebuilt against new ImageMagick ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security)
Upgrade to 1.5.3 and also note that 1.5.1 fixed CVE-2017-11424.
Rebase to the latest upstream version 2.0.14. This update contains security fix for CVS -2017-1000050.