- Detalji os-a: FED
- Važnost: IMP
- Operativni sustavi: L
- Kategorije: LFE
——————————————————————————–
Fedora Update Notification
FEDORA-2014-7697
2014-06-24 22:29:59
——————————————————————————–
Name : dpkg
Product : Fedora 20
Version : 1.16.15
Release : 1.fc20
URL : http://packages.debian.org/unstable/admin/dpkg
Summary : Package maintenance system for Debian Linux
Description :
This package contains the tools (including dpkg-source) required
to unpack, build and upload Debian source packages.
This package also contains the programs dpkg which used to handle the
installation and removal of packages on a Debian system.
This package also contains dselect, an interface for managing the
installation and removal of packages on the system.
dpkg and dselect will certainly be non-functional on a rpm-based system
because packages dependencies will likely be unmet.
——————————————————————————–
Update Information:
Update to 1.16.15, fixes: CVE-2014-3864, CVE-2014-3865 , rhbz #1103026
——————————————————————————–
ChangeLog:
* Mon Jun 23 2014 Sérgio Basto <sergio@serjux.com> – 1.16.15-1
– Update to 1.16.15, fixes: CVE-2014-3864, CVE-2014-3865 , rhbz #1103026
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> – 1.16.14-2
– Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat May 10 2014 Sérgio Basto <sergio@serjux.com> – 1.16.14-1
– Update to 1.16.14, fixes CVE-2014-0471, rhbz #1092210 .
——————————————————————————–
References:
[ 1 ] Bug #1103027 – CVE-2014-3865 CVE-2014-3864 dpkg: multiple directory traversal flaws in dpkg-source [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1103027
——————————————————————————–
This update can be installed with the “yum” update program. Use
su -c ‘yum update dpkg’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
| Autor | Tomislav Protega |
| Cert id | NCERT-REF-2014-07-0013-ADV |
| Cve | CVE-2014-3864 CVE-2014-3865 CVE-2014-0471 |
| ID izvornika | FEDORA-2014-7697 |
| Proizvod | dpkg |
| Izvor | http://www.redhat.com |
