You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa spatialite-tools

Sigurnosni nedostaci programskog paketa spatialite-tools

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2015-6324
2015-04-18 05:41:52
——————————————————————————–

Name : spatialite-tools
Product : Fedora 21
Version : 4.2.0
Release : 10.fc21
URL : https://www.gaia-gis.it/fossil/spatialite-tools
Summary : A set of useful CLI tools for SpatiaLite
Description :
Spatialite-Tools is a set of useful CLI tools for SpatiaLite.

——————————————————————————–
Update Information:

Update of sqlite to latest upstream version, with spatialite-tools rebuild.
——————————————————————————–
ChangeLog:

* Tue Apr 14 2015 Jan Stanek <jstanek@redhat.com> – 4.2.0-10
– Rebuild for sqlite 3.8.9
* Sat Mar 14 2015 Volker Froehlich <volker27@gmx.at> – 4.2.0-9
– Rebuild for proj 4.9.1
* Thu Feb 26 2015 Jan Stanek <jstanek@redhat.com> – 4.2.0-8
– Rebuild for sqlite 3.8.8.3
* Tue Jan 20 2015 Jan Stanek <jstanek@redhat.com> – 4.2.0-7
– Rebuild for sqlite 3.8.8
– Add check for the correct sqlite-devel version
* Fri Dec 12 2014 Jan Stanek <jstanek@redhat.com> – 4.2.0-6
– Rebuild for sqlite 3.8.7.4
* Tue Nov 25 2014 Jan Stanek <jstane@redhat.com> – 4.2.0-5
– Rebuild for sqlite 3.8.7.2
——————————————————————————–
References:

[ 1 ] Bug #1212353 – sqlite: use of uninitialized memory when parsing collation sequences in src/where.c
https://bugzilla.redhat.com/show_bug.cgi?id=1212353
[ 2 ] Bug #1212356 – sqlite: invalid free() in src/vdbe.c
https://bugzilla.redhat.com/show_bug.cgi?id=1212356
[ 3 ] Bug #1212357 – sqlite: stack buffer overflow in src/printf.c
https://bugzilla.redhat.com/show_bug.cgi?id=1212357
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update spatialite-tools’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

AutorMarko Stanec
Cert idNCERT-REF-2015-04-0022-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
Izvorhttp://www.adobe.com/
Top
More in Preporuke
Sigurnosni nedostaci u jezgri operacijskog sustava

Otkriveni su sigurnosni nedostaci u jezgri operacijskog sustava Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanja usluge. Svim korisnicima...

Close