Fedora 20 : netcf-0.2.8-1.fc20 (2015-5910)

Security fix for CVE-2014-8119, as well as adding a few other minor bugfixes and enhancements support for multiple IPv4 addresses, simultaneous static & dhcp for IPv4 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenab...

Fedora 20 : mediawiki-1.23.9-1.fc20 (2015-5569)

Changes since 1.23.8 - bug T85848, bug T71210 SECURITY: Don't parse XMP blocks that contain XML entities, to prevent various DoS attacks. - bug T85848 SECURITY: Don't allow directly calling Xml::isWellFormed, to reduce likelihood of DoS. - bug T88310 SECURITY: Always expand xml entities when...

[SECURITY] Fedora 20 Update: rest-0.7.93-1.fc20

This library was designed to make it easier to access web services that claim to be "RESTful". A RESTful service should have urls that represent remote objects, which methods can then be called on. The majority of servic es don't actually adhere to this strict definition. Instead, their RESTful e...

Fedora 20 : moodle-2.6.10-1.fc20 (2015-4530)

Update to latest versions of the respective branches. f20 has been updated from 2.5.x to 2.6.x because 2.5.x is EOL. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...

Fedora 20 : mingw-qt5-qtbase-5.4.1-1.fc20 / mingw-qt5-qtdeclarative-5.4.1-1.fc20 / etc (2015-4703)

Update to Qt 5.4.1 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...

[SECURITY] Fedora 20 Update: mingw-qt5-qtbase-5.4.1-1.fc20

This package contains the Qt software toolkit for developing cross-platform applications. This is the Windows version of Qt, for use in conjunction with the Fedora Windows cross-compiler...

Fedora 20 : libssh2-1.5.0-1.fc20 (2015-3791)

This update, to the current upstream release version, contains numerous bug fixes and enhancements as described in the RELEASE-NOTES file. These include a security fix for CVE-2015-1782 : A malicious attacker could man in the middle a real server and cause libssh2-using clients to crash denial of...

Fedora 20 : cabextract-1.5-1.fc20 (2015-2730)

Security fix for directory traversal with UTF-8 symbols in filenames. Fixed in upstream version 1.5. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

Fedora 20 : clamav-0.98.6-1.fc20 (2015-1437)

ClamAV 0.98.6 ============= ClamAV 0.98.6 is a bug fix release correcting the following : - library shared object revisions. - installation issues on some Mac OS X and FreeBSD platforms. - includes a patch from Sebastian Andrzej Siewior making ClamAV pid files compatible with systemd. - Fix a hea...

Fedora 20 : suricata-2.0.6-1.fc20 (2015-0792)

This is a new upstream release fixing several serious bugs: reports of eveasion issues, sequence gaps in tcp stream reassembly under TLS detection, segfault in libhtp 0.5.15 which can lead to denial of service, and several others. See change log for details. Note that Tenable Network Security has...

Fedora 20 : drupal7-context-3.6-1.fc20 (2015-0726)

CVE-2015-1051 / SA-CONTRIB-2015-004 - Context - Open Redirect Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

Fedora 20 : python-django14-1.4.18-1.fc20 (2015-0804)

update to 1.4.18 fixing multiple CVEs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 20 : thermostat-1.0.6-1.fc20 (2014-17415)

Update to latest maintenance release. It was discovered that, in certain configurations, the Thermostat agent disclosed JMX management URLs of all local Java virtual machines to any local user. A local, unprivileged user could use this flaw to escalate their privileges on the system. CVE-2014-812...

[SECURITY] Fedora 20 Update: mingw-libxml2-2.9.2-1.fc20

MinGW Windows libxml2 XML processing library...

Fedora 20 : mariadb-5.5.40-1.fc20 (2014-16003)

This is an update that fixes all issues described at https://mariadb.com/kb/en/mariadb/development/changelogs/mariadb-5540- changelog and also couple of security issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora 20 : php-horde-kronolith-4.2.4-1.fc20 (2014-16397)

kronolith 4.2.4 - jan Make access to non-CalDAV remote calendars faster Bug 12379. - jan Continue with further events if parsing of one remote event date fails. - jan Fix JS error in month view with more events today than the maximum threshold. - mjr Fix fatal error when creating or modifying an...

Fedora 20 : icecast-2.4.1-1.fc20 (2014-16394)

fix CVE-2014-9091 1168146, 1168147, 1168148, 1168149 fix CVE-2014-9018 1165880, 1165882, 1165883, 1165885 enabled fully hardened build 954320 - update new to release v2.4.1 1101950 - added doc-subpkg Note that Tenable Network Security has extracted the preceding description block directly from th...

Fedora 20 : konversation-1.5.1-1.fc20 (2014-13791)

Konversation 1.5.1 is a maintenance release containing only bug fixes. The included changes address several minor behavioral defects and a low-risk DoS security defect in the Blowfish ECB support. See also: https://konversation.kde.org/ Note that Tenable Network Security has extracted the precedi...

Fedora 20 : kde-workspace-4.11.14-1.fc20 (2014-14813)

New security fix release, privilege escalation issue, see also https://www.kde.org/info/security/advisory-20141106-1.txt Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...

Fedora 20 : pidgin-2.10.10-1.fc20 (2014-14069)

Update to 2.10.10 Security fix for CVE-2014-3694, CVE-2014-3695, CVE-2014-3696, CVE-2014-3698 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...