You are here
Home > Preporuke > Sigrurnosni propust programske biblioteke libreport

Sigrurnosni propust programske biblioteke libreport

——————————————————————————–
Fedora Update Notification
FEDORA-2015-b81f7e1e86
2015-10-28 16:02:18.285008
——————————————————————————–

Name : libreport
Product : Fedora 22
Version : 2.6.3
Release : 1.fc22
URL : https://abrt.readthedocs.org/
Summary : Generic library for reporting various problems
Description :
Libraries providing API for reporting different problems in applications
to different bug targets like Bugzilla, ftp, trac, etc…

——————————————————————————–
Update Information:

Security fix for CVE-2015-5302 abrt-2.6.1-6.fc22 – doc: fix default
DumpLocation in abrt.conf man page – abrt-retrace-client: use atoll for _size
conversion – a-a-a-ccpp-local don’t delete build_ids – abrt-dump-xorg: support
Xorg log backtraces prefixed by (EE – bodhi: fix typo in error messages
libreport-2.6.3-1.fc22 – reporter-bugzilla: add parameter -p – fix save users
changes after reviewing dump dir files – bugzilla: don’t attach build_ids –
rewrite event rule parser – ureport: improve curl’s error messages – curl: add
posibility to use own Certificate Authority cert – Resolves CVE-2015-5302
——————————————————————————–
References:

[ 1 ] Bug #1270903 – CVE-2015-5302 libreport: Possible private data leak in Bugzilla bugs opened by ABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1270903
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libreport’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2015-b81f7e1e86
2015-10-28 16:02:18.285008
——————————————————————————–

Name : abrt
Product : Fedora 22
Version : 2.6.1
Release : 6.fc22
URL : https://abrt.readthedocs.org/
Summary : Automatic bug detection and reporting tool
Description :
abrt is a tool to help users to detect defects in applications and
to create a bug report with all information needed by maintainer to fix it.
It uses plugin system to extend its functionality.

——————————————————————————–
Update Information:

Security fix for CVE-2015-5302 abrt-2.6.1-6.fc22 – doc: fix default
DumpLocation in abrt.conf man page – abrt-retrace-client: use atoll for _size
conversion – a-a-a-ccpp-local don’t delete build_ids – abrt-dump-xorg: support
Xorg log backtraces prefixed by (EE – bodhi: fix typo in error messages
libreport-2.6.3-1.fc22 – reporter-bugzilla: add parameter -p – fix save users
changes after reviewing dump dir files – bugzilla: don’t attach build_ids –
rewrite event rule parser – ureport: improve curl’s error messages – curl: add
posibility to use own Certificate Authority cert – Resolves CVE-2015-5302
——————————————————————————–
References:

[ 1 ] Bug #1270903 – CVE-2015-5302 libreport: Possible private data leak in Bugzilla bugs opened by ABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1270903
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update abrt’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

Top
More in Preporuke
Sigurnosni propust programskog paketa php5

Otkriven je sigurnosni propust u programskom paketu php5 za Ubuntu. Propust se nalazio u dodatku phar, a očitovao neispravnim upravljanjem...

Close