You are here
Home > Preporuke > Ranjivost programskog paketa osc

Ranjivost programskog paketa osc

——————————————————————————–
Fedora Update Notification
FEDORA-2015-4549
2015-03-26 16:38:26
——————————————————————————–

Name : osc
Product : Fedora 20
Version : 0.151.1
Release : 163.2.1.fc20
URL : https://github.com/openSUSE/osc
Summary : The openSUSE Build Service Commander
Description :
Commandline client for the openSUSE Build Service.

See http://en.opensuse.org/openSUSE:OSC , as well as
http://en.opensuse.org/openSUSE:Build_Service_Tutorial for a general
introduction.

——————————————————————————–
Update Information:

Security fix for CVE-2015-0778
——————————————————————————–
ChangeLog:

* Tue Feb 24 2015 Miroslav Suchý <msuchy@redhat.com> 0.151.1-163.2.1
– rebase to 0.140.1
– fixed shell command injection via crafted _service files CVE-2015-0778
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> – 0.140.1-109.1.1
– Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
——————————————————————————–
References:

[ 1 ] Bug #1201773 – CVE-2015-0778 osc: osc _service file shell injection flaw
https://bugzilla.redhat.com/show_bug.cgi?id=1201773
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update osc’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2015-4482
2015-03-26 16:35:32
——————————————————————————–

Name : osc
Product : Fedora 21
Version : 0.151.1
Release : 163.2.1.fc21
URL : https://github.com/openSUSE/osc
Summary : The openSUSE Build Service Commander
Description :
Commandline client for the openSUSE Build Service.

See http://en.opensuse.org/openSUSE:OSC , as well as
http://en.opensuse.org/openSUSE:Build_Service_Tutorial for a general
introduction.

——————————————————————————–
Update Information:

Security fix for CVE-2015-0778
——————————————————————————–
ChangeLog:

* Tue Feb 24 2015 Miroslav Suchý <msuchy@redhat.com> 0.151.1-163.2.1
– rebase to 0.140.1
– fixed shell command injection via crafted _service files CVE-2015-0778
——————————————————————————–
References:

[ 1 ] Bug #1201773 – CVE-2015-0778 osc: osc _service file shell injection flaw
https://bugzilla.redhat.com/show_bug.cgi?id=1201773
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update osc’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

Top
More in Preporuke
Sigurnosni propusti programskog paketa tor

Otkrivena su dva sigurnosna propusta programskog paketa tor za Fedoru. Ranjivosti mogu dovesti do rušenja Tor relaya. Savjetuje se ažuriranje...

Close