Fedora Essential and Critical Security Patch Updates - Page 712
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
Rawstudio from github https://github.com/rawstudio/rawstudio/ .
WebKitGTK+ 2.8.4 includes fixes for 12 security issues. Additional fixes: * Make WebSQL work by using a default quota instead of always failing in openDatabase with DOM Exception 18. * Improve detection and usage of GL/GLES/EGL libraries. * Fix a crash on memory allocation using bmalloc on 32bit systems. * Fix DOCUMENT_VIEWER cache model to actually disable the memory cache.
Update to latest upstream version, see following page for changes: https://www.thunderbird.net/en-US/thunderbird/38.1.0/releasenotes/ This update also should fixed problems with thunderbird-lightning-gdata package. Rebase to Thunderbird 38. By this release thunderbird-lightning (calendar) package has become obsolete, because it is a part of Thunderbird 38 package now. For changes see: https://www.thunderbird.net/en-US/thunderbird/38.0.1/releasenotes/ [More...]
- Upstream 2.8.21 (RHBZ #1228245) - Fix Lua sandbox escape and arbitrary code execution (RHBZ #1228331)
Update to latest upstream version, see following page for changes: https://www.thunderbird.net/en-US/thunderbird/38.1.0/releasenotes/ This update also should fixed problems with thunderbird-lightning-gdata package. Rebase to Thunderbird 38. By this release thunderbird-lightning (calendar) package has become obsolete, because it is a part of Thunderbird 38 package now. For changes see: https://www.thunderbird.net/en-US/thunderbird/38.0.1/releasenotes/ [More...]
Rawstudio from github https://github.com/rawstudio/rawstudio/ .
## 7.x-2.0-alpha9 **This is a security release. People running 7.x-2.0-alpha8 or below should update. This release only contains security fixes, no additional bug fixes or features.** Changes since 7.x-2.0-alpha8: * Issue #2495145 by twistor, cashwilliams, greggles, klausi: Possible XSS in PuSHSubscriber.inc * Issue #2502419 by klausi: Log messages XSS attack vector
## 7.x-2.0-alpha9 **This is a security release. People running 7.x-2.0-alpha8 or below should update. This release only contains security fixes, no additional bug fixes or features.** Changes since 7.x-2.0-alpha8: * Issue #2495145 by twistor, cashwilliams, greggles, klausi: Possible XSS in PuSHSubscriber.inc * Issue #2502419 by klausi: Log messages XSS attack vector
Besides other changes, this update mitigates this vulnerability: https://access.redhat.com/security/cve/CVE-2015-3243
Bump to openvas8 because of the issues found in previous versions. This should be the first version with scanner really working on Fedora.
Bump to openvas8 because of the issues found in previous versions. This should be the first version with scanner really working on Fedora.