You are here
Home > Preporuke > Sigrurnosni propust programskog paketa abrt

Sigrurnosni propust programskog paketa abrt

  • Detalji os-a: FED
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2015-11-28 18:54:20.794542

Name : abrt
Product : Fedora 23
Version : 2.7.1
Release : 1.fc23
Summary : Automatic bug detection and reporting tool
Description :
abrt is a tool to help users to detect defects in applications and
to create a bug report with all information needed by maintainer to fix it.
It uses plugin system to extend its functionality.

Update Information:

– CVE-2015-5287: ignore crashes of abrt tools if DebugLevel = 0 – CVE-2015-5273:
create own random temporary directory – make crashes of processes with locked
memory not-reportable – detect xorg backtraces from journald – fix the
coredumpctl integration tool

[ 1 ] Bug #1262252 – CVE-2015-5273 abrt: Insecure temporary directory usage in abrt-action-install-debuginfo-to-abrt-cache

This update can be installed with the “yum” update program. Use
su -c ‘yum update abrt’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorTomislav Protega
Cert idNCERT-REF-2015-11-0003-ADV
CveCVE-2015-5287 CVE-2015-5273
ID izvornikaFEDORA-2015-79
More in Preporuke
Sigurnosni nedostatak programskog paketa mingw-libpng

Otkriveni su sigurnosni nedostaci u programskom paketu mingw-libpng za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje izvođenje napada uskraćivanja...