Fedora 11 : cups-1.4.2-26.fc11 (2010-2743)

This update addresses a denial of service security issue CVE-2010-0302 as well as fixing several other small problems: classes.conf is now updated when a class member is deleted. the usermode dependency has been removed. the udev rules are now installed in the correct location. cups-config now ha...

Fedora 11 : kernel-2.6.30.10-105.2.23.fc11 (2010-1804)

Security bugs: CVE-2010-0410 CVE-2010-0415 563091 Also fixes: xfs: xfsswapextents needs to handle dynamic fork offsets F12510823 Possible system lockups caused by the fix for bug 559100 in the previous updates. Note that Tenable Network Security has extracted the preceding description block...

Fedora 11 : alienarena-7.32-3.fc11 (2010-6132)

Fixes the following security issues: - By supplying various invalid parameters to the download command, it is possible to cause a DoS condition by causing the server to crash. A path ending in . or / will crash on Linux. Supplying a negative offset will cause a crash on all platforms. - Fix buffe...

Fedora 11 : irssi-0.8.15-1.fc11 (2010-6618)

This release fixes two security issues: The first being that Irssi didn't check hostname on SSL connections and the other being a hard to exploit remote crash bug. For a complete listing of the changes and bugfixes since 0.8.14, please have a look at the http://irssi.org/news/ChangeLog Note that...

Fedora 11 : konversation-1.2.3-1.fc11 (2010-1883)

Update to version 1.2.3, which fixes remote crash caused by a message containing invalid Unicode characters. If the message triggers a KNotify notification, invalid Unicode string is sent over D-Bus, resulting in application crash. Apart from that, the earlier update to 1.2.2 included lots of fix...

Fedora 11 : viewvc-1.1.4-1.fc11 (2010-4326)

Update to upstream version 1.1.4, fixing one XSS flaw and several bugs: http://viewvc.tigris.org/source/browse/viewvc/trunk/CHANGES?revision=2 341 security fix: escape user-provided query form input to avoid XSS attack fix standalone.py failure when per-root options aren't used issue 445 fix...

Fedora 11 : trac-0.11.7-1.fc11 (2010-4287)

Update to upstream version 0.11.7, fixing one security flaw and multiple bugs. Refer to upstream changelog for further details: http://trac.edgewall.org/wiki/ChangeLoga0.11.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisor...

Fedora 11 : moin-1.8.7-1.fc11 (2010-1743)

Fixed major security issues in miscellaneous parts of moin - http://hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/CHANGES - http://secunia.com/advisories/38444/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...

Fedora 11 : postgresql-8.3.11-1.fc11 (2010-8723)

Update to new minor releases, primarily to fix CVE-2010-1169 and CVE-2010-1170, but see also other fixes at http://www.postgresql.org/docs/8.3/static/release-8-3-11.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora 11 : nano-2.0.9-1.fc11 (2010-6776)

CVE-2010-1160 CVE-2010-1161 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Fedora 11 : curl-7.19.7-5.fc11 (2010-2720)

http://curl.haxx.se/docs/adv20100209.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVE...

Fedora 11 : qt-4.6.2-8.fc11 (2010-4524)

This update fixes several WebKit security issues: CVE-2010-0046: CSS format argument memory corruption CVE-2010-0049: Use of freed line boxes in mixed LTR/RTL text CVE-2010-0050: Crash at HTMLParser after handling misnested style tags CVE-2010-0051 CVE-2010-0651: Remote information disclosure...

Fedora 11 : maildrop-2.4.0-12.fc11 (2010-1927)

This update brings maildrop to the latest upstream version closing CVE-2010-0301. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora 11 : squirrelmail-1.4.20-2.fc11 (2010-10264)

Tue Jun 22 2010 Michal Hlavinka - 1.4.20-2 - fix CVE-2010-1637 : mail fetch plugin's port-scans via non-standard POP3 server ports - Mon Mar 8 2010 Michal Hlavinka - 1.4.20-1 - updated to 1.4.20 - translations updated - Thu Sep 17 2009 Michal Hlavinka - 1.4.20-0.rc2.20100104 - updated to...

Fedora 11 : transmission-1.77-2.fc11 (2010-0388)

Fix potential data loss by maliciously-crafted .torrent files. http://trac.transmissionbt.com/wiki/Changesversion-1.77 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and form...

Fedora 11 : gif2png-2.5.1-1102.fc11 (2010-0330)

Tue Jan 5 2010 Enrico Scholz - 2.5.1-1102 - catch another possible overflow when appending a numbered suffix detected to Tomas Hoger - applied the -overflow patch... - Sat Jan 2 2010 Enrico Scholz - 2.5.1-1101 - changed -overflow patch to abort on bad filenames instead of processing truncated...

Fedora 11 : libpng10-1.0.53-1.fc11 (2010-3414)

This is the latest upstream maintenance release. In addition to a number of minor bugfixes, it mitigates the resource-consumption effects of highly compressed ancillary chunks in hostile PNG files as described at http://libpng.sourceforge.net/ADVISORY-1.4.1.html This issue has been assigned...

Fedora 11 : zabbix-1.6.8-1.fc11 (2010-0278)

Update to 1.6.8 - Upstream changelog: http://www.zabbix.com/rn1.6.8.php - fixes 2 issues from 551331 CVE-2009-4499 - https://support.zabbix.com/browse/ZBX-1031 CVE-2009-4501 - https://support.zabbix.com/browse/ZBX-1355 Note that Tenable Network Security has extracted the preceding description...

Fedora 11 : sudo-1.7.2p5-1.fc11 (2010-3415)

update to new upstream version - backported changes from F-12 - fixes CVE-2010-0426 sudo: sudoedit option can possibly allow for arbitrary code execution Fedora all 567676 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora 11 : moodle-1.9.9-1.fc11 (2010-10321)

Moodle upstream has released v1.9.9 and v1.8.13: http://docs.moodle.org/en/Moodle1.9.9releasenotes http://docs.moodle.org/en/Moodle1.8.13releasenotes Which address the following issues: MSA-10-0010 Persistent Cross Site Scripting vulnerability in the MNET access control interface MSA-10-0011 Cros...