You are here
Home > Preporuke > Sigrurnosni propust programske biblioteke libreport

Sigrurnosni propust programske biblioteke libreport

  • Detalji os-a: FED
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

——————————————————————————–
Fedora Update Notification
FEDORA-2015-6542ab6d3a
2015-11-26 04:57:38.195310
——————————————————————————–

Name : abrt
Product : Fedora 21
Version : 2.3.0
Release : 12.fc21
URL : https://github.com/abrt/abrt/wiki/ABRT-Project
Summary : Automatic bug detection and reporting tool
Description :
abrt is a tool to help users to detect defects in applications and
to create a bug report with all information needed by maintainer to fix it.
It uses plugin system to extend its functionality.

——————————————————————————–
Update Information:

Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 – doc: fix default
DumpLocation in abrt.conf man page – bodhi: fix typo in error messages – abrt-
dump-xorg: support Xorg log backtraces prefixed by (EE libreport-2.3.0-10.fc21
– fix save users changes after reviewing dump dir files – Resolves CVE-2015-5302
——————————————————————————–
References:

[ 1 ] Bug #1270903 – CVE-2015-5302 libreport: Possible private data leak in Bugzilla bugs opened by ABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1270903
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update abrt’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

——————————————————————————–
Fedora Update Notification
FEDORA-2015-6542ab6d3a
2015-11-26 04:57:38.195310
——————————————————————————–

Name : libreport
Product : Fedora 21
Version : 2.3.0
Release : 10.fc21
URL : https://github.com/abrt/abrt/wiki/ABRT-Project
Summary : Generic library for reporting various problems
Description :
Libraries providing API for reporting different problems in applications
to different bug targets like Bugzilla, ftp, trac, etc…

——————————————————————————–
Update Information:

Security fix for CVE-2015-5302 abrt-2.3.0-12.fc21 – doc: fix default
DumpLocation in abrt.conf man page – bodhi: fix typo in error messages – abrt-
dump-xorg: support Xorg log backtraces prefixed by (EE libreport-2.3.0-10.fc21
– fix save users changes after reviewing dump dir files – Resolves CVE-2015-5302
——————————————————————————–
References:

[ 1 ] Bug #1270903 – CVE-2015-5302 libreport: Possible private data leak in Bugzilla bugs opened by ABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1270903
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update libreport’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

AutorTomislav Protega
Cert idNCERT-REF-2015-11-0011-ADV
CveCVE-2015-5302
ID izvornikaFEDORA-2015-6542
Proizvodabrt libreport
Izvorhttp://www.redhat.com
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa krb5

Otkrivene su ranjivosti u programskom paketu krb5 za Fedoru 21. Ranjivosti se odnose na neispravno upravljanje paketima SPNEGO i IAKERB...

Close