You are here
Home > Preporuke > Ranjivost programskog paketa rawstudio

Ranjivost programskog paketa rawstudio

  • Detalji os-a: FED
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2015-8170
2015-05-14 06:07:17
——————————————————————————–

Name : rawstudio
Product : Fedora 21
Version : 2.1
Release : 0.1.20150511git983bda1.fc21
URL : http://rawstudio.org
Summary : Read, manipulate and convert digital camera raw images
Description :
Rawstudio is a highly specialized application for processing RAW images
from digital cameras. It is not a fully featured image editing application.

The RAW format is often recommended to get the best quality out of digital
camera images. The format is specific to cameras and cannot be read by most
image editing applications.

Rawstudio makes it possible to read and manipulate RAW images, experiment
with the controls to see how they affect the image, and finally export into
JPEG, PNG or TIF format images from most digital cameras.

——————————————————————————–
Update Information:

Rawstudio from github https://github.com/rawstudio/rawstudio/ .
——————————————————————————–
ChangeLog:

* Wed May 13 2015 Sérgio Basto <sergio@serjux.com> – 2.1-0.1.20150511git983bda1
– Rawstudio from github https://github.com/rawstudio/rawstudio/ .
– Drop all patches beacuse they are upstreamed.
– https://fedoraproject.org/wiki/Packaging:SourceURL#Github
– Updated requirements.
– Use a parcial copy of autogen.sh to build this package.
* Sat May 2 2015 Kalev Lember <kalevlember@gmail.com> – 2.0-19
– Rebuilt for GCC 5 C++11 ABI change
* Sun Mar 22 2015 Kalev Lember <kalevlember@gmail.com> – 2.0-18
– Fix the build with lensfun 0.3 (#1184156)
* Tue Jan 20 2015 Peter Robinson <pbrobinson@fedoraproject.org> 2.0-17
– rebuild (libgphoto2)
——————————————————————————–
References:

[ 1 ] Bug #1221249 – CVE-2015-3885 dcraw: input sanitization flaw leading to buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1221249
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update rawstudio’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2015-8196
2015-05-14 20:19:50
——————————————————————————–

Name : rawstudio
Product : Fedora 22
Version : 2.1
Release : 0.1.20150511git983bda1.fc22
URL : http://rawstudio.org
Summary : Read, manipulate and convert digital camera raw images
Description :
Rawstudio is a highly specialized application for processing RAW images
from digital cameras. It is not a fully featured image editing application.

The RAW format is often recommended to get the best quality out of digital
camera images. The format is specific to cameras and cannot be read by most
image editing applications.

Rawstudio makes it possible to read and manipulate RAW images, experiment
with the controls to see how they affect the image, and finally export into
JPEG, PNG or TIF format images from most digital cameras.

——————————————————————————–
Update Information:

Rawstudio from github https://github.com/rawstudio/rawstudio/ .
——————————————————————————–
ChangeLog:

* Wed May 13 2015 Sérgio Basto <sergio@serjux.com> – 2.1-0.1.20150511git983bda1
– Rawstudio from github https://github.com/rawstudio/rawstudio/ .
– Drop all patches beacuse they are upstreamed.
– https://fedoraproject.org/wiki/Packaging:SourceURL#Github
– Updated requirements.
– Use a parcial copy of autogen.sh to build this package.
* Sat May 2 2015 Kalev Lember <kalevlember@gmail.com> – 2.0-19
– Rebuilt for GCC 5 C++11 ABI change
——————————————————————————–
References:

[ 1 ] Bug #1221249 – CVE-2015-3885 dcraw: input sanitization flaw leading to buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1221249
[ 2 ] Bug #1120093 – CVE-2014-4978 rawstudio: Insecure use of temporary file
https://bugzilla.redhat.com/show_bug.cgi?id=1120093
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update rawstudio’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

AutorTomislav Protega
Cert idNCERT-REF-2015-07-0020-ADV
CveCVE-2015-3885 CVE-2014-4978
ID izvornikaFEDORA-2015-8170 FEDORA-2015-8196
Proizvodrawstudio
Izvorhttp://www.redhat.com
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa freexl

Otkriven je sigurnosni nedostatak u programskom paketu freexl. Otkriveni nedostatak je posljedica cjelobrojnog prepisivanja i potencijalnim napadačima omogućuje izvođenje napada...

Close