Fedora Essential and Critical Security Patch Updates - Page 717

Fedora 22: xen Security Update 2015-9456

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

replace deprecated gnutls use in qemu-xen-traditional based on qemu-xen patches, work around a gcc 5 bug, Potential unintended writes to host MSI message data field via qemu [XSA-128, CVE-2015-4103], PCI MSI mask bits inadvertently exposed to guests [XSA-129,

LinuxSecurity.com Team
Jun 14, 2015

Fedora 21: xen Security Update 2015-9466

Potential unintended writes to host MSI message data field via qemu [XSA-128, CVE-2015-4103], PCI MSI mask bits inadvertently exposed to guests [XSA-129, CVE-2015-4104], Guest triggerable qemu MSI-X pass-through error messages [XSA-130,

LinuxSecurity.com Team
Jun 14, 2015

Fedora 20: armacycles-ad Security Update

Changes since 0.2.8.3.2: - security fix: do not read ahead of the beginning of network buffer. - security fix: don't attribute network errors from processing random packets to the connection to the server - security fix: while at it, don't process random packets unless they

LinuxSecurity.com Team
Jun 14, 2015

Fedora 21: armacycles-ad Security Update

LinuxSecurity.com Team
Jun 14, 2015

Fedora 22: armacycles-ad Security Update

LinuxSecurity.com Team
Jun 14, 2015

Fedora 20: libreswan Security Update

Updated to 3.13 for CVE-2015-3204

LinuxSecurity.com Team
Jun 14, 2015

Fedora 20: nss-util Security Update

Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https [More...]

LinuxSecurity.com Team
Jun 14, 2015

Fedora 20: nss-softokn Security Update

LinuxSecurity.com Team
Jun 14, 2015

Fedora 20: nss Security Update

LinuxSecurity.com Team
Jun 14, 2015

Fedora 22: filezilla Security Update

Latest upstream, multiple security and bug fixes: https://filezilla-project.org/

LinuxSecurity.com Team
Jun 13, 2015

Fedora 20: ntfs-3g Security Update

Fix CVE-2015-3202.

LinuxSecurity.com Team
Jun 13, 2015

Fedora 20: fuse Security Update

Update to 2.9.4, which fixes CVE-2015-3202.

LinuxSecurity.com Team
Jun 13, 2015

Fedora 22: qemu Security Update 2015-9601

* CVE-2015-4037: insecure temporary file use in /net/slirp.c (bz #1222894)

LinuxSecurity.com Team
Jun 11, 2015

Fedora 21: python-tornado Security Update

Security fixes The XSRF token is now encoded with a random mask on each request. This makes it safe to include in compressed pages without being vulnerable to the BREACH attack. This applies to most applications that use both the xsrf_cookies and gzip options (or have gzip applied by a proxy). Backwards-compatibility notes If Tornado 3.2.2 is run at the same time as older versions on the same [More...]

LinuxSecurity.com Team
Jun 10, 2015

Fedora 22: fusionforge Security Update

Security fix for CVE-2015-0850 CVE-2015-0850: Prevent arbitrary command execution via clone URL parameter of the method to create secondary Git repositories. Found by Ansgar Burchardt .

LinuxSecurity.com Team
Jun 10, 2015

Fedora 22: freecad Security Update

Rolled back 0.15 update for f20 & f21 due to library conflict. Also addresses a security vulnerability.

LinuxSecurity.com Team
Jun 10, 2015

Fedora 22: cabal-install Security Update

Force cabal upload to always use digest auth and never basic auth Note this only affects uploading of new source tarballs to Hackage by Haskell upstream package maintainers. It is safer to upload packages via the Hackage web interface.