Explore top 10 tips to secure your open-source projects now. Read More
×
Update to the latest stable release, which fixes CVE-2016-8605 and CVE-2016-8606.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-0aab71f552 2016-10-16 18:50:00.470003 -------------------------------------------------------------------------------- Name : guile Product : Fedora 25 Version : 2.0.13 Release : 1.fc25 URL : http://www.gnu.org/software/guile/ Summary : A GNU implementation of Scheme for application extensibility Description : GUILE (GNU's Ubiquitous Intelligent Language for Extension) is a library implementation of the Scheme programming language, written in C. GUILE provides a machine-independent execution platform that can be linked in as a library during the building of extensible programs. Install the guile package if you'd like to add extensibility to programs that you are developing. -------------------------------------------------------------------------------- Update Information: Update to the latest stable release, which fixes CVE-2016-8605 and CVE-2016-8606. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1383966 - CVE-2016-8605 guile: Thread-unsafe umask modification https://bugzilla.redhat.com/show_bug.cgi?id=1383966 [ 2 ] Bug #1383972 - CVE-2016-8606 guile: REPL server vulnerable to HTTP inter-protocol attacks https://bugzilla.redhat.com/show_bug.cgi?id=1383972 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update guile' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Get the latest Linux and open source security news straight to your inbox.