You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa lxc

Sigurnosni nedostaci programskog paketa lxc

——————————————————————————–
Fedora Update Notification
FEDORA-2015-12645
2015-08-03 02:18:26
——————————————————————————–

Name : lxc
Product : Fedora 21
Version : 1.0.7
Release : 2.fc21
URL : http://linuxcontainers.org
Summary : Linux Resource Containers
Description :
Linux Resource Containers provide process and resource isolation without the
overhead of full virtualization.

——————————————————————————–
Update Information:

Security fix for CVE-2015-1331, CVE-2015-1334.
——————————————————————————–
ChangeLog:

* Sun Aug 2 2015 Thomas Moschny <thomas.moschny@gmx.de> – 1.0.7-2
– Add security fixes, see rhbz#1245939 and rhbz#1245941.
* Sun Dec 7 2014 Thomas Moschny <thomas.moschny@gmx.de> – 1.0.7-1
– Update to 1.0.7.
——————————————————————————–
References:

[ 1 ] Bug #1245939 – CVE-2015-1331 lxc: directory traversal flaw
https://bugzilla.redhat.com/show_bug.cgi?id=1245939
[ 2 ] Bug #1245941 – CVE-2015-1334 lxc: possible unconfined code execution
https://bugzilla.redhat.com/show_bug.cgi?id=1245941
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update lxc’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2015-12647
2015-08-03 02:18:31
——————————————————————————–

Name : lxc
Product : Fedora 22
Version : 1.1.2
Release : 2.fc22
URL : http://linuxcontainers.org
Summary : Linux Resource Containers
Description :
Linux Resource Containers provide process and resource isolation without the
overhead of full virtualization.

——————————————————————————–
Update Information:

Security fix for CVE-2015-1331, CVE-2015-1334.
——————————————————————————–
ChangeLog:

* Sun Aug 2 2015 Thomas Moschny <thomas.moschny@gmx.de> – 1.1.2-2
– Add security fixes, see rhbz#1245939 and rhbz#1245941.
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> – 1.1.2-1.1
– Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
——————————————————————————–
References:

[ 1 ] Bug #1245941 – CVE-2015-1334 lxc: possible unconfined code execution
https://bugzilla.redhat.com/show_bug.cgi?id=1245941
[ 2 ] Bug #1245939 – CVE-2015-1331 lxc: directory traversal flaw
https://bugzilla.redhat.com/show_bug.cgi?id=1245939
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update lxc’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

Top
More in Preporuke
Ranjivost programskg paketa rubygems

Otkrivena je ranjivost u programskom paketu rubygems za Fedoru. Ranjivost je uzrokovana neprovjeravanjem naziva poslužitelja prilikom dohvaćanja gems paketa ili...

Close