Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
203
security advisorymoderateimage issueMageia 7 and 8 MGASA-2021-0210 Moderate: Pngcheck Crash Bug Fix
This update fixes a divide-by-zero crash bug (and probable vulnerability) in interlaced images with extra compressed data beyond the nominal end of the image data. (found by "chiba of topsec alpha lab") (rhbz#1949800). References: . MGASA-2021-0210 - Updated pngcheck packages fix a security vulnerability Publication date: 12 May 2021 URL: https://advisories.mageia.org/MGASA-2021-0210.html Type: security Affected Mageia releases: 7, 8 This update fixes a divide-by-zero crash bug (and probable vulnerability) in interlaced images with extra compressed data beyond the nominal end of the image data. (found by "chiba of topsec alpha lab") (rhbz#1949800). References: - https://bugs.mageia.org/show_bug.cgi?id=28879 - https://lists.fedoraproject.org/archives/list/
May 12, 2021
Mageia
202
security advisorymoderateupdateopenSUSE: 2021:0456-1 Critical: Gnome Software Vulnerabilities
An update that fixes four vulnerabilities is now available. . openSUSE Security Update: Security update for ImageMagick ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0377-1 Rating: moderate References: #1182325 #1182335 #1182336 #1182337 Cross-References: CVE-2021-20241 CVE-2021-20243 CVE-2021-20244 CVE-2021-20246 CVSS scores: CVE-2021-20241 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2021-20243 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2021-20244 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2021-20246 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for ImageMagick fixes the following issues: - CVE-2021-20241 [bsc#1182335]: Division by zero in WriteJP2Image() in coders/jp2.c - CVE-2021-20243 [bsc#1182336]: Division by zero in GetResizeFilterWeight in MagickCore/resize.c - CVE-2021-20244 [bsc#1182325]: Division by zero in ImplodeImage in MagickCore/visual-effects.c - CVE-2021-20246 [bsc#1182337]: Division by zero in ScaleResampleFilter in MagickCore/resample.c This update was imported from the SUSE:SLE-15-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-377=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): ImageMagick-7.0.7.34-lp152.12.12.1 ImageMagick-config-7-SUSE-7.0.7.34-lp152.12.12.1 ImageMagick-config-7-upstream-7.0.7.34-lp152.12.12.1 ImageMagick-debuginfo-7.0.7.34-lp152.12.12.1 ImageMagick-debugsource-7.0.7.34-lp152.12.12.1 ImageMagick-devel-7.0.7.34-lp152.12.12.1 ImageMagick-extra-7.0.7.34-lp152.12.12.1 ImageMagick-extra-debuginfo-7.0.7.34-lp152.12.12.1 libMagick++-7_Q16HDRI4-7.0.7.34-lp152.12.12.1 libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp152.12.12.1 libMagick++-devel-7.0.7.34-lp152.12.12.1 libMagickCore-7_Q16HDRI6-7.0.7.34-lp152.12.12.1 libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp152.12.12.1 libMagickWand-7_Q16HDRI6-7.0.7.34-lp152.12.12.1 libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp152.12.12.1 perl-PerlMagick-7.0.7.34-lp152.12.12.1 perl-PerlMagick-debuginfo-7.0.7.34-lp152.12.12.1 - openSUSE Leap 15.2 (noarch): ImageMagick-doc-7.0.7.34-lp152.12.12.1 - openSUSE Leap 15.2 (x86_64): ImageMagick-devel-32bit-7.0.7.34-lp152.12.12.1 libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp152.12.12.1 libMagick++-7_Q16HDRI4-32bit-debuginfo-7.0.7.34-lp152.12.12.1 libMagick++-devel-32bit-7.0.7.34-lp152.12.12.1 libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp152.12.12.1 libMagickCore-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp152.12.12.1 libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp152.12.12.1 libMagickWand-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp152.12.12.1 References: https://www.suse.com/security/cve/CVE-2021-20241.html https://www.suse.com/security/cve/CVE-2021-20243.html https://www.suse.com/security/cve/CVE-2021-20244.html https://www.suse.com/security/cve/CVE-2021-20246.html https://bugzilla.suse.com/1182325 https://bugzilla.suse.com/1182335 https://bugzilla.suse.com/1182336 https://bugzilla.suse.com/1182337 . Recent enhancements in GIMP have resolved several vulnerabilities affecting Fedora. Make sure your installation is updated to benefit from these vital security upgrades.. ImageMagick Update, openSUSE Security, Moderate Security Fix. .LinuxSecurity.com Team
Mar 03, 2021
OpenSUSE
172
security advisorydenial of serviceUbuntuUbuntu 15.10 USN-2898-2 Critical: eog Denial of Service Threat
Eye of GNOME could be made to crash or run programs as your login if it opened a specially crafted image.. =========================================================================Ubuntu Security Notice USN-2898-2 February 15, 2016 eog vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 15.10 - Ubuntu 14.04 LTS - Ubuntu 12.04 LTS Summary: Eye of GNOME could be made to crash or run programs as your login if it opened a specially crafted image. Software Description: - eog: Eye of GNOME graphics viewer program Details: It was discovered that Eye of GNOME incorrectly handled certain large images. If a user were tricked into opening a specially-crafted image, a remote attacker could use this issue to cause Eye of GNOME to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: eog 3.16.3-1ubuntu2.1 Ubuntu 14.04 LTS: eog 3.10.2-0ubuntu5.1 Ubuntu 12.04 LTS: eog 3.4.2-0ubuntu1.2 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-2898-2 https://ubuntu.com/security/notices/USN-2898-1 CVE-2013-7447 Package Information: https://launchpad.net/ubuntu/+source/eog/3.16.3-1ubuntu2.1 https://launchpad.net/ubuntu/+source/eog/3.10.2-0ubuntu5.1 https://launchpad.net/ubuntu/+source/eog/3.4.2-0ubuntu1.2 . A vulnerability in Eye of GNOME may enable attackers to impersonate users or cause system crashes. Immediate updates are critical for Ubuntu users to secure their systems.. Eye Of GNOME, Ubuntu Security Notice, Denial Of Service, Code Execution, Image Vulnerability. . Severity: Critical. LinuxSecurity.com Team
Feb 15, 2016
•Critical
Ubuntu
98
security advisorymoderatebug fixRed Hat OpenStack 3.0 RHSA-2013-1525-01 Moderate Download Policy Issue
Updated openstack-glance packages that fix one security issue and several bugs are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: openstack-glance security and bug fix update Advisory ID: RHSA-2013:1525-01 Product: Red Hat OpenStack Advisory URL: https://access.redhat.com/errata/RHSA-2013:1525.html Issue date: 2013-11-18 CVE Names: CVE-2013-4428 ==================================================================== 1. Summary: Updated openstack-glance packages that fix one security issue and several bugs are now available for Red Hat OpenStack 3.0. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: OpenStack 3 - noarch 3. Description: The openstack-glance packages provide a service (code name Glance) that acts as a registry for virtual machine images. A flaw was found in the Glance download_image policy enforcement for cached system images. When an image was previously cached by an authorized download, any authenticated user able to determine the image by its UUID could download that image, bypassing the download_image policy. Only setups making use of the download_image policy were affected. (CVE-2013-4428) Red Hat would like to thank the OpenStack Project for reporting this issue. The OpenStack Project acknowledges Stuart McLaren from HP as the original reporter. These updated openstack-glance packages have been upgraded to upstream version 2013.1.4, which provides a number of bug fixes over theprevious version. (BZ#1021640) All users of openstack-glance are advised to upgrade to these updated packages, which correct these issues. After installing the updated packages, the running Glance services must be manually restarted (using "service [service name] restart") for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1019572 - CVE-2013-4428 OpenStack Glance: image_download policy not enforced for cached images 6. Package List: OpenStack 3: Source: noarch: openstack-glance-2013.1.4-1.el6ost.noarch.rpm openstack-glance-doc-2013.1.4-1.el6ost.noarch.rpm python-glance-2013.1.4-1.el6ost.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2013-4428 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFSimqWXlSAg2UNWIIRAoQVAKCFlk9fHIAl52SUEg0KO8Ko2Hnk5QCeIJ0T flLkW31ub6f2/1s5CIlEBcU=pyKL -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Nov 18, 2013
Red Hat
98
security advisorymoderateRed Hat Enterprise LinuxRed Hat Enterprise Linux 4 RHSA-2011:1103-01 Moderate: Libpng Image Issue
Updated libpng and libpng10 packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: libpng security update Advisory ID: RHSA-2011:1103-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2011:1103.html Issue date: 2011-07-28 CVE Names: CVE-2011-2692 ==================================================================== 1. Summary: Updated libpng and libpng10 packages that fix one security issue are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 3. Description: The libpng packages contain a library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. An uninitialized memory read issue was found in the way libpng processed certain PNG images that use the Physical Scale (sCAL) extension. An attacker could create a specially-crafted PNG image that, when opened, could cause an application using libpng to crash. (CVE-2011-2692) Users of libpng and libpng10 should upgrade to these updated packages, which contain a backported patch to correct this issue. All running applications using libpng or libpng10 mustbe restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 720612 - CVE-2011-2692 libpng: Invalid read when handling empty sCAL chunks 6. Package List: Red Hat Enterprise Linux AS version4: Source: i386: libpng-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-devel-1.2.7-8.el4.i386.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-devel-1.0.16-9.el4.i386.rpm ia64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.ia64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.ia64.rpm libpng-devel-1.2.7-8.el4.ia64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.ia64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.ia64.rpm libpng10-devel-1.0.16-9.el4.ia64.rpm ppc: libpng-1.2.7-8.el4.ppc.rpm libpng-1.2.7-8.el4.ppc64.rpm libpng-debuginfo-1.2.7-8.el4.ppc.rpm libpng-debuginfo-1.2.7-8.el4.ppc64.rpm libpng-devel-1.2.7-8.el4.ppc.rpm libpng10-1.0.16-9.el4.ppc.rpm libpng10-1.0.16-9.el4.ppc64.rpm libpng10-debuginfo-1.0.16-9.el4.ppc.rpm libpng10-debuginfo-1.0.16-9.el4.ppc64.rpm libpng10-devel-1.0.16-9.el4.ppc.rpm s390: libpng-1.2.7-8.el4.s390.rpm libpng-debuginfo-1.2.7-8.el4.s390.rpm libpng-devel-1.2.7-8.el4.s390.rpm libpng10-1.0.16-9.el4.s390.rpm libpng10-debuginfo-1.0.16-9.el4.s390.rpm libpng10-devel-1.0.16-9.el4.s390.rpm s390x: libpng-1.2.7-8.el4.s390.rpm libpng-1.2.7-8.el4.s390x.rpm libpng-debuginfo-1.2.7-8.el4.s390.rpm libpng-debuginfo-1.2.7-8.el4.s390x.rpm libpng-devel-1.2.7-8.el4.s390x.rpm libpng10-1.0.16-9.el4.s390.rpm libpng10-1.0.16-9.el4.s390x.rpm libpng10-debuginfo-1.0.16-9.el4.s390.rpm libpng10-debuginfo-1.0.16-9.el4.s390x.rpm libpng10-devel-1.0.16-9.el4.s390x.rpm x86_64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.x86_64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.x86_64.rpm libpng-devel-1.2.7-8.el4.x86_64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.x86_64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.x86_64.rpm libpng10-devel-1.0.16-9.el4.x86_64.rpm Red Hat Enterprise Linux Desktop version4: Source: i386: libpng-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-devel-1.2.7-8.el4.i386.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-devel-1.0.16-9.el4.i386.rpm x86_64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.x86_64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.x86_64.rpm libpng-devel-1.2.7-8.el4.x86_64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.x86_64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.x86_64.rpm libpng10-devel-1.0.16-9.el4.x86_64.rpm Red Hat Enterprise Linux ES version 4: Source: i386: libpng-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-devel-1.2.7-8.el4.i386.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-devel-1.0.16-9.el4.i386.rpm ia64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.ia64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.ia64.rpm libpng-devel-1.2.7-8.el4.ia64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.ia64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.ia64.rpm libpng10-devel-1.0.16-9.el4.ia64.rpm x86_64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.x86_64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.x86_64.rpm libpng-devel-1.2.7-8.el4.x86_64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.x86_64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.x86_64.rpm libpng10-devel-1.0.16-9.el4.x86_64.rpm Red Hat Enterprise Linux WS version4: Source: i386: libpng-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-devel-1.2.7-8.el4.i386.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-devel-1.0.16-9.el4.i386.rpm ia64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.ia64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.ia64.rpm libpng-devel-1.2.7-8.el4.ia64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.ia64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.ia64.rpm libpng10-devel-1.0.16-9.el4.ia64.rpm x86_64: libpng-1.2.7-8.el4.i386.rpm libpng-1.2.7-8.el4.x86_64.rpm libpng-debuginfo-1.2.7-8.el4.i386.rpm libpng-debuginfo-1.2.7-8.el4.x86_64.rpm libpng-devel-1.2.7-8.el4.x86_64.rpm libpng10-1.0.16-9.el4.i386.rpm libpng10-1.0.16-9.el4.x86_64.rpm libpng10-debuginfo-1.0.16-9.el4.i386.rpm libpng10-debuginfo-1.0.16-9.el4.x86_64.rpm libpng10-devel-1.0.16-9.el4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2011-2692 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2011 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFOMamHXlSAg2UNWIIRAhn5AKDDT/GzTFyFxzVNykH6OtP5/hnYcwCeNFBW QtBcCi5n9hbtLOvLu93W/nc=7tmH -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Jul 28, 2011
Red Hat
89
security advisorybuffer overflowFedoraFedora 11: 2009-8993 Moderate: XEmacs Image Buffer Overflow
This update fixes multiple buffer overflows when reading large image files, or maliciously created image files whose headers misrepresent the actual image size. The update also addresses multiple font issues, some of which cause warnings on startup. Some warnings remain, however, unless an ISO8859-13 fonts (e.g., terminus) is installed. Also note that some warnings remain on Rawhide pending a resolution for bz 507637.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-8993 2009-08-25 21:40:34 --------------------------------------------------------------------------------Name : xemacs Product : Fedora 11 Version : 21.5.29 Release : 2.fc11 URL : http://www.xemacs.org/ Summary : Different version of Emacs Description : XEmacs is a highly customizable open source text editor and application development system. It is protected under the GNU General Public License and related to other versions of Emacs, in particular GNU Emacs. Its emphasis is on modern graphical user interface support and an open software development model, similar to Linux. This package contains XEmacs built for X Windows with MULE support. --------------------------------------------------------------------------------Update Information: This update fixes multiple buffer overflows when reading large image files, or maliciously created image files whose headers misrepresent the actual image size. The update also addresses multiple font issues, some of which cause warnings on startup. Some warnings remain, however, unless an ISO8859-13 fonts (e.g., terminus) is installed. Also note that some warnings remain on Rawhide pending a resolution for bz 507637. --------------------------------------------------------------------------------ChangeLog: * Mon Aug 24 2009 Jerry James - 21.5.29-2 - Fix image overflow bug (CVE-2009-2688). - Fix calling xft-font-create-object in non-Xft builds (#512623). -Rebase patches to eliminate fuzz/offsets. * Wed May 20 2009 Ville Skyttä - 21.5.29-1 - Update to 21.5.29; gtk-gcc4, finder-lisp-dir, 3d-athena, autoconf262, doc-encodings, revert-modified, and xemacs-base-autoloads patches applied upstream. * Thu Mar 12 2009 Ville Skyttä - 21.5.28-13 - Add possibility to build upstream hg snapshots. - Add dependency on xorg-x11-fonts-misc (#478370, Carl Brune). - Include Installation{,-nox} in docs. --------------------------------------------------------------------------------References: [ 1 ] Bug #511994 - CVE-2009-2688 xemacs: multiple integer overflow flaws https://bugzilla.redhat.com/show_bug.cgi?id=511994 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update xemacs' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list
Sep 04, 2009
•Important
Fedora
89
security advisoryfedoraupdateFedora Core 4: FEDORA-2006-400 Critical Netpbm Image Corruption Fix
Updated package.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2006-400 2006-04-17 ---------------------------------------------------------------------Product : Fedora Core 4 Name : netpbm Version : 10.33 Release : 1.FC4 Summary : A library for handling different graphics file formats. Description : The netpbm package contains a library of functions which support programs for handling various graphics file formats, including .pbm (portable bitmaps), .pgm (portable graymaps), .pnm (portable anymaps), .ppm (portable pixmaps) and others. ---------------------------------------------------------------------* Fri Apr 14 2006 Jindrich Novy 10.33-1.FC4 - fix image corruption in ppmtogif, thanks to Gilles Detillieux (#188597) - fix nsting.h to let pnmtopng and other utilities using seekable opening mode work on x86_64 (#188594) ---------------------------------------------------------------------This update can be downloaded from: c95924703a1ae7fd0c6c56a296a234bc76cda872 SRPMS/netpbm-10.33-1.FC4.src.rpm 3a40059eedc9a019a8f13e27743e5b7486131afc ppc/netpbm-10.33-1.FC4.ppc.rpm 6b1c90b421b7f51a1bbe841e1a8f9292c8d1725a ppc/netpbm-devel-10.33-1.FC4.ppc.rpm ec8ccffc37aee9a9c42824c0d5a8d73f51b31e71 ppc/netpbm-progs-10.33-1.FC4.ppc.rpm 3dcd3815f0b6fd393570ed66733221b6a2d92930 ppc/debug/netpbm-debuginfo-10.33-1.FC4.ppc.rpm bef18b4d1b957e1fce18300d753cf8a6089ea0b3 x86_64/netpbm-10.33-1.FC4.x86_64.rpm 820d388aeb6e3c12f1b8c66cbd7aac83b09fdf9e x86_64/netpbm-devel-10.33-1.FC4.x86_64.rpm 76671102e014db5e3e4b80e41e41e81a0d7078aa x86_64/netpbm-progs-10.33-1.FC4.x86_64.rpm 03bba2aa8c7caa3a7a632e97c8d6677856b9e8d7 x86_64/debug/netpbm-debuginfo-10.33-1.FC4.x86_64.rpm 11ca6a6c426b7ed6ff0181989a0565f1fc2db6e3 i386/netpbm-10.33-1.FC4.i386.rpm 4b63557dc6eb81f46876eed308065ae9f40f55ac i386/netpbm-devel-10.33-1.FC4.i386.rpm 4edc32ee32b571eaf8cd6c7c698479e861820173 i386/netpbm-progs-10.33-1.FC4.i386.rpm ec1fb25139df5652a6a91c9f4870b3f62fda01d2 i386/debug/netpbm-debuginfo-10.33-1.FC4.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at . ----------------------------------------------------------------------- fedora-announce-list mailing list
Apr 17, 2006
•Critical
Fedora
89
security advisorysoftware updateFedora CoreFedora Core 2: FEDORA-2004-314 Moderate: GTK2 Image Issue
The previous update for the gtk2 contained a bug which breaks image thumbnailing in Nautilus. This update fixes the problem.. --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-314 2004-09-23 --------------------------------------------------------------------- Product : Fedora Core 2 Name : gtk2 Version : 2.4.7 Release : 2.6 Summary : The GIMP ToolKit (GTK+), a library for creating GUIs for X. Description : GTK+ is a multi-platform toolkit for creating graphical user interfaces. Offering a complete set of widgets, GTK+ is suitable for projects ranging from small one-off tools to complete application suites. --------------------------------------------------------------------- Update Information: The previous update for the gtk2 contained a bug which breaks image thumbnailing in Nautilus. This update fixes the problem. --------------------------------------------------------------------- * Tue Sep 21 2004 Matthias Clasen - 2.4.7-2.6 - Fix image thumbnailing in nautilus. (#132836) --------------------------------------------------------------------- This update can be downloaded from: 817a8555fdbcd2bd5b0691dc37921e43 SRPMS/gtk2-2.4.7-2.6.src.rpm 98bcadd966860e9784006055b42f6d1a x86_64/gtk2-2.4.7-2.6.x86_64.rpm 6eae821587a1642daffaf1ad8e82069c x86_64/gtk2-devel-2.4.7-2.6.x86_64.rpm 2e2a98ec0a34120fa27d4cb96ff71857 x86_64/debug/gtk2-debuginfo-2.4.7-2.6.x86_64.rpm dc38b91b5fcb674f555b5706ddfe0428 x86_64/gtk2-2.4.7-2.6.i386.rpm dc38b91b5fcb674f555b5706ddfe0428 i386/gtk2-2.4.7-2.6.i386.rpm 5faf6ef80013a2f4ae2a041b7aa3c33e i386/gtk2-devel-2.4.7-2.6.i386.rpm 32653464cb99dc72f1f912153aa43283 i386/debug/gtk2-debuginfo-2.4.7-2.6.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- fedora-announce-list mailing list
Sep 23, 2004
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!