Fedora Essential and Critical Security Patch Updates - Page 793

Find the information you need for your favorite open source distribution .

Fedora 8 Update: rb_libtorrent-0.12-3.fc8

Fedora 8 Update: rb_libtorrent-0.12-3.fc8

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A potential remote exploit was found in the bdecode_recursive routine that could trigger a stack overflow when passed malformed message data. This release adds a fix for this issue from the upstream subversion repository that limits the maximum recursive depth of this function.

Fedora 8 Update: xine-lib- 1.1.9.1-1.fc8

Fedora 8 Update: xine-lib- 1.1.9.1-1.fc8

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

--------------------------------------------------------------------------------Fedora Update Notification FEDORA-2008-0718 2008-01-15 22:31:02 --------------------------------------------------------------------------------Name : xine-lib Product : Fedora 8 Version : 1.1.9.1 Release : 1.fc8 URL : http://xinehq.de/ Summary : Xine library Description : This package contains the Xine library. Xine is a free multimedia player. It can play back various media. It also decodes multimedia files from local disk drives, and displays multimedia streamed over the Internet. It interprets many of the most common multimedia formats available - and some of the most uncommon formats, too. --with/--without rpmbuild options (some default values depend on target distribution): aalib, caca, directfb, imagemagick, freetype, antialiasing (with freetype), jack, pulseaudio, wavpack, xcb. --------------------------------------------------------------------------------Update Information: Update to latest upstream security fix release, 1.1.9.1. ;group_id=9655 ;group_id=9655 --------------------------------------------------------------------------------References: [ 1 ] Bug #428620 - CVE-2008-0225 xine-lib: SDP attributes buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=428620 --------------------------------------------------------------------------------Updated packages: b2abe960ef6a29f54a90a732abb409524c2a6133 xine-lib-debuginfo-1.1.9.1-1.fc8.ppc64.rpm bb88e6e6f35e9a5176d2a01d1eaff806c5e5f8c2 xine-lib-extras-1.1.9.1-1.fc8.ppc64.rpm 16e241385bf28e8e241ce68cdfa6071521c702d1 xine-lib-arts-1.1.9.1-1.fc8.ppc64.rpm 72a202179b50a3e78562966fead56ec8b90728c6 xine-lib-devel-1.1.9.1-1.fc8.ppc64.rpm 7bb90948f5070dc8d9610483b5033d692475fd2b xine-lib-1.1.9.1-1.fc8.ppc64.rpm ce6c97f78ba49906cb02ccbdb7d5956bb102b5bb xine-lib-debuginfo-1.1.9.1-1.fc8.i386.rpm c22f6122ca16a24bb0048acb90737102c68cc21e xine-lib-extras-1.1.9.1-1.fc8.i386.rpm be962cda0955f992793de4626ea5097d700d4198 xine-lib-arts-1.1.9.1-1.fc8.i386.rpm ff8ab3ebd2b713216deed1acae49c3b8b940ebad xine-lib-devel-1.1.9.1-1.fc8.i386.rpm cbd11130176bc6ae53c9279b260869ddd0390c3f xine-lib-1.1.9.1-1.fc8.i386.rpm 2facdc9b37748b5fabf15088e90ccdcc3f98474e xine-lib-debuginfo-1.1.9.1-1.fc8.x86_64.rpm 4531454886a6eb2fb33133fbc3e27778cb742f0d xine-lib-extras-1.1.9.1-1.fc8.x86_64.rpm 6f942388b92b16d910de0d0267eb745604b7faa8 xine-lib-arts-1.1.9.1-1.fc8.x86_64.rpm ddaef3c21012b59553163f6ecc9d0a6a60271e5a xine-lib-devel-1.1.9.1-1.fc8.x86_64.rpm 97d66d5263f68509665d4c7d5c1f981e2849d482 xine-lib-1.1.9.1-1.fc8.x86_64.rpm bb0f2ae7857d4c4790bb122d61ea0196cdd80ecd xine-lib-debuginfo-1.1.9.1-1.fc8.ppc.rpm a500d455a5bb4196e8f26a5c428d8d1d1b30ada0 xine-lib-extras-1.1.9.1-1.fc8.ppc.rpm 77cf908868e0a64859dbbb8089cc5a8fa1028aa5 xine-lib-arts-1.1.9.1-1.fc8.ppc.rpm a7f96e9dc172d180c1b44fa14769bc62bdd6e7f3 xine-lib-devel-1.1.9.1-1.fc8.ppc.rpm 0f3fc9b3aa1fef5b6a8688d90e45a17011a6b3fd xine-lib-1.1.9.1-1.fc8.ppc.rpm b11c21906a5c41485838867d52fe97203d60be35 xine-lib-1.1.9.1-1.fc8.src.rpm This update can be installed with the "yum" update program. Use su -c 'yum update xine-lib' at the command line. For more information, refer to "Managing Software with yum", available at . --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 7 Update: ruby-gnome 2-0.16.0-17.fc7

Fedora 7 Update: ruby-gnome 2-0.16.0-17.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: chmsee-1.0.0-1.27.fc7

Fedora 7 Update: chmsee-1.0.0-1.27.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: firefox-2.0.0.10-1.fc7

Fedora 7 Update: firefox-2.0.0.10-1.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: liferea-1.4.8-2.fc7

Fedora 7 Update: liferea-1.4.8-2.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: epiphany extensions-2.18.3-6

Fedora 7 Update: epiphany extensions-2.18.3-6

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: gnome python2-extras 2.14.3-7.fc7

Fedora 7 Update: gnome python2-extras 2.14.3-7.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: openvrml-0.16.7-2.fc7

Fedora 7 Update: openvrml-0.16.7-2.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Updated firefox packages that fix several security issues are now available for Fedora 7. This update has been rated as having critical security impact by the Fedora Security Response Team. Mozilla Firefox is an open source Web browser. A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)

Fedora 7 Update: tk-8.4.13-6.fc7

Fedora 7 Update: tk-8.4.13-6.fc7

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) before 8.4.16 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first.

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved