Stay Secure with the Latest Linux Advisories

security advisoryFedorasecurity flaw

Fedora 9: DEVIL-1.7.5-2 Moderate: Fixes for Symbol and Security Issues

- Fix missing symbols (rh 480269) - Fix off by one error in CVE-2008-5262 check (rh 479864). --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2009-0856 2009-01-21 20:36:00 --------------------------------------------------------------------------------Name : DevIL Product : Fedora 9 Version : 1.7.5 Release : 2.fc9 URL : https://openil.sourceforge.net/ Summary : A cross-platform image library Description : Developer's Image Library (DevIL) is a programmer's library to develop applications with very powerful image loading capabilities, yet is easy for a developer to learn and use. Ultimate control of images is left to the developer, so unnecessary conversions, etc. are not performed. DevIL utilizes a simple, yet powerful, syntax. DevIL can load, save, convert, manipulate, filter and display a wide variety of image formats. --------------------------------------------------------------------------------Update Information: - Fix missing symbols (rh 480269) - Fix off by one error in CVE-2008-5262 check (rh 479864) --------------------------------------------------------------------------------ChangeLog: * Mon Jan 19 2009 Hans de Goede 1.7.5-2 - Fix missing symbols (rh 480269) - Fix off by one error in CVE-2008-5262 check (rh 479864) * Tue Jan 13 2009 Hans de Goede 1.7.5-1 - Update to latest upstream: 1.7.5 - Add patch to fix CVE-2008-5262 --------------------------------------------------------------------------------References: [ 1 ] Bug #479864 - CVE-2008-5262 DevIL: RGBE buffer overflow vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=479864 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update DevIL' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Fedora 9 DevIL patch resolves symbol issues and corrects an off-by-one mistake to improve security and reliability.. DevIL Update, Fedora 9 Security, Image Library Fixes, Software Updates. . LinuxSecurity.com Team

Jan 22, 2009 Fedora