Fedora 8 : xterm-238-1.fc8 (2009-0154)

This update fixes the following security issue: CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF aka \n characters surrounding a command name within a Device Control Request Status String DECRQSS escape sequence in a text file, a related...

Fedora 8 : seamonkey-1.1.14-1.fc8 (2008-11534)

Update to new upstream release 1.1.14 fixing multiple security issues: http://www.mozilla.org/security/known- vulnerabilities/seamonkey11.htmlseamonkey1.1.14 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...

Fedora 8 : gallery2-2.3-1.fc8 (2008-11230)

New version, multiple security fixes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Fedora 8 : syslog-ng-2.0.10-1.fc8 (2008-10920)

Fixes CVE-2008-5110 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

Fedora 8 : roundup-1.4.6-1.fc8 (2008-9712)

Fri Oct 3 2008 Paul P. Komkoff Jr - 1.4.6-1 - new upstream version - Fri Mar 7 2008 Paul P. Komkoff Jr - 1.4.4-1 - new upstream version with security fixes bz436546 - Wed Feb 20 2008 Paul P. Komkoff Jr - 1.4.1-2 - new upstream version - Wed Jan 23 2008 Paul P. Komkoff Jr - 1.4.1-1 - new upstream...

Fedora 8 : moodle-1.8.7-1.fc8 (2008-9502)

Fix for cron job, also fix for CVE-2008-4796. Upgrade to new upstream, fix cron bug. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora 8 : ed-1.1-1.fc8 (2008-9236)

ed is a line-oriented text editor, used to create, display, and modify text files both interactively and via shell scripts. A heap-based buffer overflow was discovered in the way ed, the GNU line editor, processed long file names. An attacker could create a file with a specially crafted name that...

[SECURITY] Fedora 8 Update: libgadu-1.8.2-1.fc8

libgadu is intended to make it easy to add Gadu-Gadu communication support to your software...

Fedora 8 : jhead-2.84-1.fc8 (2008-8941)

Thu Oct 16 2008 Adrian Reber - 2.84-1 - updated to 2.84 - fixes 'CVE-2008-4575 jhead buffer overflow' 467262 - removed upstreamed makefile patch - Wed Sep 24 2008 Adrian Reber - 2.82-2 - rebased makefile patch - Sat Apr 5 2008 Adrian Reber - 2.82-1 - updated to 2.82 - Mon Feb 18 2008 Fedora...

[SECURITY] Fedora 8 Update: rubygem-actionpack-2.1.1-1.fc8

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Fedora 8 : cups-1.3.9-1.fc8 (2008-8801)

Security release. This updates to 1.3.9 and fixes three integer overflows in the CUPS text and image filters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

Fedora 8 : httrack-3.42.93-1.fc8 (2008-7896)

Tue Sep 09 2008 Debarshi Ray - 3.42.93-1 - Version bump to 3.42.93. Closes Red Hat Bugzilla bugs 457523 CVE-2008-3429and 460529. - Use of generic macros in the publicly exposed API fixed by upstream. - Use of xdg-open now added by upstream. - OpenSSL version updated by upstream. - Linkage issues...

Fedora 8 : wireshark-1.0.3-1.fc8 (2008-7894)

Upgrade to upstream version 1.0.3. Detailed upstream release notes: http://www.wireshark.org/docs/relnotes/wireshark-1.0.3.html Security issues addressed in the new upstream version: http://www.wireshark.org/security/wnpa- sec-2008-05.html Note that Tenable Network Security has extracted the...

[SECURITY] Fedora 8 Update: libHX-1.23-1.fc8

A library for: - rbtree with key-value pair extension - deques double-ended queues Stacks LIFO / Queues FIFOs - platform independent opendir-style directory access - platform independent dlopen-style shared library access - auto-storage strings with direct access - command line option argv parser...

Fedora 8 : amarok-1.4.10-1.fc8 (2008-7719)

Amarok 1.4.10 has been released to fix a security problem. For more information please see http://amarok.kde.org/en/node/535/ Please update. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

Fedora 8 : httpd-2.2.9-1.fc8 (2008-6314)

This update includes the latest release of httpd 2.2. A security issue is fixed in this update: A flaw was found in the handling of excessive interim responses from an origin server when using modproxyhttp. In a forward proxy configuration, if a user of the proxy could be tricked into visiting a...

Fedora 8 : pdns-2.9.21.1-1.fc8 (2008-7083)

Wed Aug 6 2008 Ruben Kerkhof 2.9.21.1-1 - CVE-2008-3337 - Sat Feb 9 2008 Ruben Kerkhof 2.9.21-4 - GCC 4.3 fixes - Wed Dec 5 2007 Ruben Kerkhof 2.9.21-3 - Rebuild to pick up new openldap Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

Fedora 8 : trac-0.10.5-1.fc8 (2008-6830)

Update to 0.10.5 to fix two non-critical security issues: CVE-2008-2951: Open redirect vulnerability in the search script in Trac before 0.10.5 allows remote attackers to redirect users to arbitrary websites and conduct phishing attacks via a URL in the q parameter. CVE-2008-3328: Cross-site...

Fedora 8 : libetpan-0.54-1.fc8 (2008-5480)

Update to new upstream version 0.54 fixing a crash NULL pointer dereference in the mail message header parser. Note: There is no application in Fedora using libetpan library for which such crash could be considered a security issue. This can only be a security sensitive issue for some 3rd party,...

Fedora 8 : libpng-1.2.29-1.fc8 (2008-4847)

Update to new upstream version 1.2.29. Among other bug fixes, this introduces a minor security fix in the handling of unknown chunks - CVE-2008-1382: http://libpng.sourceforge.net/Advisory-1.2.26.txt http://www.ocert.org/advisories/ocert-2008-003.html Note that Tenable Network Security has...