Fedora Linux Distribution
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
**PHP version 7.1.20** (19 Jul 2018) **Core:** * Fixed bug php#76534 (PHP hangs on 'illegal string offset on string references with an error handler). (Laruence) * Fixed bug php#76502 (Chain of mixed exceptions and errors does not serialize properly). (Nikita) **Date:** * Fixed bug php#76462 (Undefined property: DateInterval::$f). (Anatol) **exif:** * Fixed bug php#76423 (Int
Update to 1.2.6 to fix a local authenticated privilege escalation bug (CVE-2018-10900). The issue has been discovered and responsibly disclosed by Denis Andzakovic: https://pulsesecurity.co.nz/advisories/NM-VPNC-Privesc
This update includes the latest upstream release, **httpd 2.4.34**, with multiple bug fixes and enhancements. See for more information on the changes in this version. A security vulnerability is addressed in this update: * `mod_md`: DoS via Coredumps on specially crafted requests (CVE-2018-8011)
New version of dcraw is available 9.28.0 Security fix for CVE-2018-5801
Update to 1.2.6 to fix a local authenticated privilege escalation bug (CVE-2018-10900). The issue has been discovered and responsibly disclosed by Denis Andzakovic: https://pulsesecurity.co.nz/advisories/NM-VPNC-Privesc
Add fix for CVE-2018-0618 (#1596459) ---- Add fix for CVE-2018-0618 (#1596460)
- Fix Side Channel Based ECDSA Key Extraction (CVE-2018-12437) (PR #408) - Fix potential stack overflow when DER flexi-decoding (CVE-2018-0739) (PR #373) - Fix two-key 3DES (PR #390) - Fix accelerated CTR mode (PR #359) - Fix Fortuna PRNG (PR #363) - Fix compilation on platforms where cc doesn't point to gcc (PR #382) - Fix using the wrong environment variable LT instead of LIBTOOL (PR #392) - Fix [More...]
This release fixes a directory and symbolic link traversal vulnerability in Archive::Zip::Archive Perl module that allows an attacker to writite into an arbitrary file accesible by a local user.
This release fixes a directory and symbolic link traversal vulnerability in Archive::Zip::Archive Perl module that allows an attacker to writite into an arbitrary file accesible by a local user.
New release (1:12.2.6-1) Security fix for CVE-2018-1128 Security fix for CVE-2018-1129 Security fix for CVE-2018-10861
- fix heap buffer overflow in SMTP send (CVE-2018-0500)
- Security fix for CVE-2017-9258, CVE-2017-9259, CVE-2017-9260
Update to 4.9.7 security release. https://wordpress.org/news/2018/07/wordpress-4-9-7-security-and-maintenance-release/
Security fix for CVE-2018-8009 ---- Version update to 2.7.6. Fixes many open CVEs and bugs.
Update to Sprockets 3.7.2. Fixes CVE-2018-3760: https://access.redhat.com/security/cve/cve-2018-3760