Fedora Linux Distribution - Page 547
Find the information you need for your favorite open source distribution .
Fedora 26: libvncserver Security Update
Update to latest stable release, include fixes for gnutls and gtk-vnc compatibility.
Fedora 25: squirrelmail Security Update
fix insufficient escaping of user-supplied data (CVE-2017-7692)
Fedora 25: wget Security Update 2017-22f1a8404e
Fixed CVE-2017-6508: CRLF injection in the url_parse function in url.c
Fedora 25: sudo Security Update
- update to 1.8.20p2 - added sudo package to dnf/yum protected packages ---- - update to 1.8.20p1 - fixes CVE-2017-1000367
Fedora 24: squirrelmail Security Update
fix insufficient escaping of user-supplied data (CVE-2017-7692)
Fedora 24: chromium-native_client Security Update
Update to chromium 58. Move chrome-remote-desktop to user systemd service. Security fixes for CVE-2017-5068, CVE-2017-5057, CVE-2017-5058, CVE-2017-5059, CVE-2017-5060, CVE-2017-5061, CVE-2017-5062, CVE-2017-5063, CVE-2017-5064, CVE-2017-5065, CVE-2017-5066, CVE-2017-5067, CVE-2017-5069 ---- Security fix for CVE-2017-5055, CVE-2017-5054, CVE-2017-5052, CVE-2017-5056, CVE-2017-5053
Fedora 24: chromium Security Update 2017-7d698eba8b
Update to chromium 58. Move chrome-remote-desktop to user systemd service. Security fixes for CVE-2017-5068, CVE-2017-5057, CVE-2017-5058, CVE-2017-5059, CVE-2017-5060, CVE-2017-5061, CVE-2017-5062, CVE-2017-5063, CVE-2017-5064, CVE-2017-5065, CVE-2017-5066, CVE-2017-5067, CVE-2017-5069 ---- Security fix for CVE-2017-5055, CVE-2017-5054, CVE-2017-5052, CVE-2017-5056, CVE-2017-5053
Fedora 25: puppet Security Update
Security fix for CVE-2017-2295 and fix for using systemd service provider in a chroot.
Fedora 24: menu-cache Security Update
A potential security flaw is found on LXDE products, which create socket under /tmp with some predictable names, which may leads to DOS. The security flow on lxterminal is now assigned as CVE-2016-10369. Some other components also had similar issues. These new rpms should fix these issues. At least relogin is required to make this fix effect.
Fedora 24: lxterminal Security Update
A potential security flaw is found on LXDE products, which create socket under /tmp with some predictable names, which may leads to DOS. The security flow on lxterminal is now assigned as CVE-2016-10369. Some other components also had similar issues. These new rpms should fix these issues. At least relogin is required to make this fix effect.
Fedora 24: pcmanfm Security Update
A potential security flaw is found on LXDE products, which create socket under /tmp with some predictable names, which may leads to DOS. The security flow on lxterminal is now assigned as CVE-2016-10369. Some other components also had similar issues. These new rpms should fix these issues. At least relogin is required to make this fix effect.
Fedora 25: systemd Security Update
A security fix for a systemd-resolved crash on a crafted DNS packet. Relevant only to systemd-resolved users (not enabled by default). No need to reboot or logout.
Fedora 25: mupdf Security Update 2017-5135c91b36
Fix for CVE-2016-8728 CVE-2016-8729 ---- Rebuild with new jbig2dec
Fedora 25: webkitgtk4 Security Update 2017-98bc28ae9e
This update addresses the following vulnerabilities: * [CVE-2017-2496](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2496), [CVE-2017-2539](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2539), [CVE-2017-2510](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2510) Additional fixes: * Fix URL shown in the title of beforeunload dialogs. * Focus
Fedora 24: git Security Update
An issue in `git-shell` could allow remote users to run an interactive pager. From the [update announcement](https://public-inbox.org/git/This email address is being protected from spambots. You need JavaScript enabled to view it./): ... fix a recently disclosed problem with "git shell", which may allow a user who comes over SSH to run an interactive pager by causing it to spawn "git
