- Detalji os-a: WN7
- Važnost: IMP
- Operativni sustavi: L
- Kategorije: LFE
——————————————————————————–
Fedora Update Notification
FEDORA-2015-2020
2015-02-14 23:24:30
——————————————————————————–
Name : file
Product : Fedora 21
Version : 5.22
Release : 2.fc21
URL : http://www.darwinsys.com/file/
Summary : A utility for determining file types
Description :
The file command is used to identify a particular file according to the
type of data contained by the file. File can identify many different
file types, including ELF binaries, system libraries, RPM packages, and
different graphics formats.
——————————————————————————–
Update Information:
Update to File-5.22. Fixes various CVE bugs.
——————————————————————————–
ChangeLog:
* Mon Feb 16 2015 Jan Kaluza <jkaluza@redhat.com> – 5.22-2
– remove weak zlib pattern
* Wed Feb 4 2015 Jan Kaluza <jkaluza@redhat.com> – 5.22-1
– update to new version 5.22
——————————————————————————–
References:
[ 1 ] Bug #1180642 – CVE-2014-9621 file: limit string printing to 100 chars
https://bugzilla.redhat.com/show_bug.cgi?id=1180642
[ 2 ] Bug #1171580 – CVE-2014-8116 file: multiple denial of service issues (resource consumption)
https://bugzilla.redhat.com/show_bug.cgi?id=1171580
[ 3 ] Bug #1174606 – CVE-2014-8117 file: denial of service issue (resource consumption)
https://bugzilla.redhat.com/show_bug.cgi?id=1174606
[ 4 ] Bug #1180639 – CVE-2014-9620 file: limit the number of ELF notes processed
https://bugzilla.redhat.com/show_bug.cgi?id=1180639
[ 5 ] Bug #1190116 – CVE-2014-9653 file: malformed elf file causes access to uninitialized memory
https://bugzilla.redhat.com/show_bug.cgi?id=1190116
——————————————————————————–
This update can be installed with the “yum” update program. Use
su -c ‘yum update file’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
| Autor | Marijo Plepelic |
| Cert id | NCERT-REF-2015-02-0009-ADV |
| Cve | CERT-CVE-DUMMY |
| ID izvornika | CERT-ORIGID-DUMMY |
| Proizvod | CERT-DUMMY-PRODUCT |
| Izvor | http://www.adobe.com/ |
